CVE-2025-31164

Опубликовано: 28 мар. 2025

Источник: debian

Описание

heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline.

Пакет	Статус	Версия исправления	Релиз	Тип
fig2dev	fixed	1:3.2.9a-2		package
fig2dev	fixed	1:3.2.8b-3+deb12u1	bookworm	package

https://sourceforge.net/p/mcj/tickets/184/
Fixed by: https://sourceforge.net/p/mcj/fig2dev/ci/ff9aba206a30288f456dfc91584a52ba9927b438/

CVE-2025-31164

CVSS3: 6.6

ubuntu

11 месяцев назад

heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline.

CVE-2025-31164

CVSS3: 6.6

nvd

11 месяцев назад

heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline.

GHSA-p47h-x29h-rvvm

CVSS3: 6.6

github

11 месяцев назад

heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline.

SUSE-SU-2025:1540-1

suse-cvrf

9 месяцев назад

Security update for transfig

SUSE-SU-2025:01835-2

suse-cvrf

7 месяцев назад

Security update for transfig