Vulnerabilities > Fig2Dev Project

DATE CVE VULNERABILITY TITLE RISK
2022-01-12 CVE-2021-37529 Double Free vulnerability in multiple products
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).
local
low complexity
fig2dev-project debian CWE-415
5.5
2022-01-12 CVE-2021-37530 Out-of-bounds Write vulnerability in multiple products
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.
local
low complexity
fig2dev-project debian CWE-787
5.5
2021-08-10 CVE-2020-21675 Out-of-bounds Write vulnerability in multiple products
A stack-based buffer overflow in the genptk_text component in genptk.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ptk format.
local
low complexity
fig2dev-project debian CWE-787
5.5
2021-08-10 CVE-2020-21676 Out-of-bounds Write vulnerability in multiple products
A stack-based buffer overflow in the genpstrx_text() component in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks format.
local
low complexity
fig2dev-project debian CWE-787
5.5
2021-08-10 CVE-2020-21678 Classic Buffer Overflow vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A global buffer overflow in the genmp_writefontmacro_latex component in genmp.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into mp format.
local
low complexity
fig2dev-project CWE-120
5.5
2021-08-10 CVE-2020-21680 Out-of-bounds Write vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A stack-based buffer overflow in the put_arrow() component in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pict2e format.
local
low complexity
fig2dev-project CWE-787
5.5
2021-08-10 CVE-2020-21681 Classic Buffer Overflow vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A global buffer overflow in the set_color component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format.
local
low complexity
fig2dev-project CWE-120
5.5
2021-08-10 CVE-2020-21682 Classic Buffer Overflow vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A global buffer overflow in the set_fill component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format.
local
low complexity
fig2dev-project CWE-120
5.5
2021-08-10 CVE-2020-21683 Classic Buffer Overflow vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A global buffer overflow in the shade_or_tint_name_after_declare_color in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks format.
local
low complexity
fig2dev-project CWE-120
5.5
2021-08-10 CVE-2020-21684 Classic Buffer Overflow vulnerability in Fig2Dev Project Fig2Dev 3.2.7B
A global buffer overflow in the put_font in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pict2e format.
local
low complexity
fig2dev-project CWE-120
5.5