ELSA-2026-0756

Опубликовано: 19 янв. 2026

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2026-0756: transfig security update (MODERATE)

[1:3.2.6a-5]

Oracle Linux 8

Oracle Linux aarch64

transfig

3.2.6a-5.el8_10

Oracle Linux x86_64

transfig

3.2.6a-5.el8_10

CVE-2025-46397

CVSS3: 7.8

ubuntu

10 месяцев назад

A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline function.

CVE-2025-46397

CVSS3: 4.7

redhat

10 месяцев назад

In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation at the bezier_spline function.

CVE-2025-46397

CVSS3: 7.8

nvd

10 месяцев назад

A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline function.

CVE-2025-46397

CVSS3: 7.8

debian

10 месяцев назад

A flaw was found in xfig. This vulnerability allows possible code exec ...

GHSA-fqm9-qqwf-gq9r

CVSS3: 7.1

github

10 месяцев назад

Stack-overflow in fig2dev in version 3.2.9a allows an attacker possible code execution via local input manipulation via bezier_spline function.