rpm/transfig
SHA256
1
0
Fork 0
forked from pool/transfig
Code Pull Requests Activity

Missed CVE numbers

Browse Source 
OBS-URL: https://build.opensuse.org/package/show/Publishing/transfig?expand=0&rev=79
This commit is contained in:
Dr. Werner Fink 2021-09-14 09:39:26 +00:00 committed by Git OBS Bridge
parent 8979e0ec42
commit 630223e119
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
transfig.changes
View File

@ -61,6 +61,14 @@ Fri Feb 12 09:50:30 UTC 2021 - Dr. Werner Fink <werner@suse.de>
bsc#1159130 - CVE-2019-19746: transfig,xfig: segmentation fault and
out-of-bounds write because of an integer overflow via
a large arrow type
bsc#1189343 - CVE-2020-21680: transfig: A stack-based buffer overflow in the
put_arrow() component in genpict2e.c
bsc#1189345 - CVE-2020-21681: transfig: A global buffer overflow in the
set_color component in genge.c
bsc#1189325 - CVE-2020-21683: transfig: A global buffer overflow in the
shade_or_tint_name_after_declare_color in genpstricks.c
bsc#1189346 - CVE-2020-21682: transfig: A global buffer overflow in the
set_fill component in genge.c
and many more
- Port and rename patch transfig-3.2.6.dif which is now transfig-3.2.8.dif
- Remove patches now obsolete