Fig2dev Project: >> Fig2dev >> 3.2.8 Security Vulnerabilities
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).
CVSS Score
5.5
EPSS Score
0.004
Published
2022-01-12
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.
CVSS Score
5.5
EPSS Score
0.004
Published
2022-01-12
An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in read_objects() could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as well as system availability.
CVSS Score
7.1
EPSS Score
0.001
Published
2021-05-26