Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-40241 | 1 Xfig Project | 1 Xfig | 2024-11-21 | N/A | 9.8 CRITICAL |
xfig 3.2.7 is vulnerable to Buffer Overflow. | |||||
CVE-2019-19555 | 1 Xfig Project | 1 Xfig | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
read_textobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf. | |||||
CVE-2017-16899 | 2 Debian, Xfig Project | 2 Debian Linux, Xfig | 2024-11-21 | 5.8 MEDIUM | 7.1 HIGH |
An array index error in the fig2dev program in Xfig 3.2.6a allows remote attackers to cause a denial-of-service attack or information disclosure with a maliciously crafted Fig format file, related to a negative font value in dev/gentikz.c, and the read_textobject functions in read.c and read1_3.c. |