A stack-based buffer overflow in the genptk_text component in genptk.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ptk format.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:3.2.6a-6ubuntu1.1", "binary_name": "fig2dev" }, { "binary_version": "1:3.2.6a-6ubuntu1.1", "binary_name": "fig2dev-dbgsym" }, { "binary_version": "1:3.2.6a-6ubuntu1.1", "binary_name": "transfig" } ] }