Fig2dev Project: >> Fig2dev >> 3.2.7a Security Vulnerabilities
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).
CVSS Score
5.5
EPSS Score
0.004
Published
2022-01-12
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.
CVSS Score
5.5
EPSS Score
0.004
Published
2022-01-12
A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-08-30