Vulnerabilities > CVE-2020-21676 - Out-of-bounds Write vulnerability in multiple products
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A stack-based buffer overflow in the genpstrx_text() component in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks format.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
OS | 2 |
Common Weakness Enumeration (CWE)
References
- https://cwe.mitre.org/data/definitions/121.html
- https://cwe.mitre.org/data/definitions/121.html
- https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html
- https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html
- https://lists.debian.org/debian-lts-announce/2023/01/msg00044.html
- https://lists.debian.org/debian-lts-announce/2023/01/msg00044.html
- https://sourceforge.net/p/mcj/tickets/76/
- https://sourceforge.net/p/mcj/tickets/76/