[Git][security-tracker-team/security-tracker][master] Add CVE-2020-21529/fig2dev

Fri Sep 17 09:34:56 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
107895c6 by Salvatore Bonaccorso at 2021-09-17T10:34:41+02:00
Add CVE-2020-21529/fig2dev

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -77991,7 +77991,11 @@ CVE-2020-21531 (fig2dev 3.2.7b contains a global buffer overflow in the conv_pat
 CVE-2020-21530 (fig2dev 3.2.7b contains a segmentation fault in the read_objects funct ...)
 	TODO: check
 CVE-2020-21529 (fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline f ...)
-	TODO: check
+	- fig2dev 1:3.2.8-1
+	- transfig <removed>
+	NOTE: https://sourceforge.net/p/mcj/tickets/65/
+	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/d70e4ba6308046f71cb51f67db8412155af52411/ (3.2.8)
+	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/e3cee2576438f47a3b8678c6960472e625f8f7d7/ (3.2.8)
 CVE-2020-21528
 	RESERVED
 CVE-2020-21527 (There is an Arbitrary file deletion vulnerability in halo v1.1.3. A ba ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/107895c6b20f1ca5e9f3cf54a806638b41e48fae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/107895c6b20f1ca5e9f3cf54a806638b41e48fae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210917/bad4ea30/attachment-0001.htm>
