Vulnerabilities > Fig2Dev Project

DATE CVE VULNERABILITY TITLE RISK
2021-05-26 CVE-2021-3561 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An Out of Bounds flaw was found fig2dev version 3.2.8a.
7.1
2019-12-12 CVE-2019-19746 Integer Overflow or Wraparound vulnerability in multiple products
make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type.
local
low complexity
fig2dev-project fedoraproject CWE-190
5.5
2018-08-30 CVE-2018-16140 Out-of-bounds Write vulnerability in multiple products
A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file.
local
low complexity
canonical fig2dev-project CWE-787
7.8