fig2dev 1:3.2.7a-7ubuntu0.1 source package in Ubuntu
Changelog
fig2dev (1:3.2.7a-7ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2019-19555[-test].patch: fixed a buffer overflow in
read_textobject function and added tests to see if it's fixed.
- debian/patches/CVE-2020-21534.patch: fixed an out-of-bounds write
in read_colordef function (CVE-2019-19797), a segmentation fault
in read_objects function (CVE-2020-21530), a buffer overflow in
read_textobject function (CVE-2020-21533), a buffer overflow in
get_line function (CVE-2020-21534), a segmentation fault in
gencgm_start function (CVE-2020-21535), and a buffer overflow in
genptk_text function (CVE-2020-21675).
- debian/patches/CVE-2020-21529[1-2].patch: fixed a buffer overflow in
bezier_spline function.
- debian/patches/CVE-2020-21531.patch: fixed a buffer overflow in
conv_pattern_index function.
- debian/patches/CVE-2020-21532.patch: fixed a buffer overflow in
setfigfont function.
- debian/patches/CVE-2020-21676.patch: fixed a buffer overflow in
genpstrx_text function.
- debian/patches/CVE-2021-3561.patch: fixed a flawed bounds check in
read_objects function.
- debian/patches/CVE-2021-32280.patch: fixed a NULL pointer dereference
in compute_closed_spline function.
- CVE-2019-19555
- CVE-2019-19797
- CVE-2020-21530
- CVE-2020-21533
- CVE-2020-21534
- CVE-2020-21535
- CVE-2020-21675
- CVE-2020-21529
- CVE-2020-21531
- CVE-2020-21532
- CVE-2020-21676
- CVE-2021-3561
- CVE-2021-32280
-- Amir Naseredini <email address hidden> Mon, 13 Feb 2023 09:53:05 +0000
Upload details
- Uploaded by:
- Amir Naseredini
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- graphics
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | universe | misc | |
| Focal | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| fig2dev_3.2.7a.orig.tar.xz | 495.4 KiB | bda219a15efcdb829e6cc913a4174f5a4ded084bf91565c783733b34a89bfb28 |
| fig2dev_3.2.7a-7ubuntu0.1.debian.tar.xz | 227.5 KiB | 7c3718046699e8ec9e827906a0facc5d478f4de6b6734180bb77db5a0957e615 |
| fig2dev_3.2.7a-7ubuntu0.1.dsc | 2.2 KiB | 6689cede8d5c183ac591a1400d54c93d4100c01376f221770c2f7dda921b4228 |
Available diffs
Binary packages built by this source
- fig2dev: Utilities for converting XFig figure files
This package contains utilities (mainly fig2dev) to handle XFig
(Facility for Interactive Generation of figures) files.
.
It can convert files produced by xfig to box, cgm, dxf, epic, eepic,
eepicemu, emf, eps, gbx, ge, gif, ibmgl, jpeg, latex, map (HTML image
map), mf (MetaFont), mp (MetaPost), mmp (Multi-Meta-Post), pcx, pdf,
pdftex, pdftex_t, pic, pict2e, pictex, png, ppm, ps, pstex, pstex_t,
pstricks, ptk (Perl/tk), shape, sld (AutoCad slide format), svg,
textyl, tiff, tikz, tk (Tcl/Tk), tpic, xbm and xpm.
- fig2dev-dbgsym: debug symbols for fig2dev
