QID 751291
Date Published: 2021-11-22
QID 751291: SUSE Enterprise Linux Security Update for transfig (SUSE-SU-2021:3585-1)
This update for transfig fixes the following issues: update to fig2dev version 3.2.8 patchlevel 8b (aug 2021) - bsc#1190618, cve-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c.
- bsc#1190615, cve-2020-21530: segmentation fault in the read_objects function in read.c.
- bsc#1190617, cve-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c.
- bsc#1190616, cve-2020-21532: global buffer overflow in the setfigfont function in genepic.c.
- bsc#1190612, cve-2020-21533: stack buffer overflow in the read_textobject function in read.c.
- bsc#1190611, cve-2020-21534: global buffer overflow in the get_line function in read.c.
- bsc#1190607, cve-2020-21535: segmentation fault in the gencgm_start function in gencgm.c.
- bsc#1192019, cve-2021-32280: null pointer dereference in compute_closed_spline() in trans_spline.c
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Successful exploitation allows attacker to compromise the system.
- SUSE-SU-2021:3585-1 -
lists.suse.com/pipermail/sle-security-updates/2021-October/009685.html
CVEs related to QID 751291
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| SUSE-SU-2021:3585-1 | SUSE Enterprise Linux |
|