Xfig Project Fig2Dev vulnerabilities

10 known vulnerabilities affecting xfig_project/fig2dev.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM10

Vulnerabilities

Page 1 of 1
CVE-2021-32280MEDIUMCVSS 5.5fixed in 3.2.82021-09-20
CVE-2021-32280 [MEDIUM] CWE-476 CVE-2021-32280: An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8.
nvd
CVE-2020-21529MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21529 [MEDIUM] CWE-787 CVE-2020-21529: fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c. fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
nvd
CVE-2020-21533MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21533 [MEDIUM] CWE-787 CVE-2020-21533: fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c. fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.
nvd
CVE-2020-21534MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21534 [MEDIUM] CWE-120 CVE-2020-21534: fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c. fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.
nvd
CVE-2020-21532MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21532 [MEDIUM] CWE-120 CVE-2020-21532: fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c. fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
nvd
CVE-2020-21531MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21531 [MEDIUM] CWE-120 CVE-2020-21531: fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c. fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
nvd
CVE-2020-21535MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21535 [MEDIUM] CWE-125 CVE-2020-21535: fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
nvd
CVE-2020-21530MEDIUMCVSS 5.5v3.2.72021-09-16
CVE-2020-21530 [MEDIUM] CVE-2020-21530: fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c. fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.
nvd
CVE-2019-19797MEDIUMCVSS 5.5v3.2.72019-12-15
CVE-2019-19797 [MEDIUM] CWE-787 CVE-2019-19797: read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write. read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
nvd
CVE-2019-14275MEDIUMCVSS 5.5v3.2.72019-07-26
CVE-2019-14275 [MEDIUM] CWE-787 CVE-2019-14275: Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c. Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.
nvd