Security update for transfig SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:3584-1 Final 1 1 2021-10-29T14:27:46Z current 2021-10-29T14:27:46Z 2021-10-29T14:27:46Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for transfig This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b (Aug 2021) - bsc#1190618, CVE-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c. - bsc#1190615, CVE-2020-21530: segmentation fault in the read_objects function in read.c. - bsc#1190617, CVE-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c. - bsc#1190616, CVE-2020-21532: global buffer overflow in the setfigfont function in genepic.c. - bsc#1190612, CVE-2020-21533: stack buffer overflow in the read_textobject function in read.c. - bsc#1190611, CVE-2020-21534: global buffer overflow in the get_line function in read.c. - bsc#1190607, CVE-2020-21535: segmentation fault in the gencgm_start function in gencgm.c. - bsc#1192019, CVE-2021-32280: NULL pointer dereference in compute_closed_spline() in trans_spline.c The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-3584,SUSE-SLE-Product-WE-15-SP2-2021-3584,SUSE-SLE-Product-WE-15-SP3-2021-3584 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ Link for SUSE-SU-2021:3584-1 https://lists.suse.com/pipermail/sle-security-updates/2021-October/009682.html E-Mail link for SUSE-SU-2021:3584-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1189325 SUSE Bug 1189325 https://bugzilla.suse.com/1189343 SUSE Bug 1189343 https://bugzilla.suse.com/1189345 SUSE Bug 1189345 https://bugzilla.suse.com/1189346 SUSE Bug 1189346 https://bugzilla.suse.com/1190607 SUSE Bug 1190607 https://bugzilla.suse.com/1190611 SUSE Bug 1190611 https://bugzilla.suse.com/1190612 SUSE Bug 1190612 https://bugzilla.suse.com/1190615 SUSE Bug 1190615 https://bugzilla.suse.com/1190616 SUSE Bug 1190616 https://bugzilla.suse.com/1190617 SUSE Bug 1190617 https://bugzilla.suse.com/1190618 SUSE Bug 1190618 https://bugzilla.suse.com/1192019 SUSE Bug 1192019 https://www.suse.com/security/cve/CVE-2020-21529/ SUSE CVE CVE-2020-21529 page https://www.suse.com/security/cve/CVE-2020-21530/ SUSE CVE CVE-2020-21530 page https://www.suse.com/security/cve/CVE-2020-21531/ SUSE CVE CVE-2020-21531 page https://www.suse.com/security/cve/CVE-2020-21532/ SUSE CVE CVE-2020-21532 page https://www.suse.com/security/cve/CVE-2020-21533/ SUSE CVE CVE-2020-21533 page https://www.suse.com/security/cve/CVE-2020-21534/ SUSE CVE CVE-2020-21534 page https://www.suse.com/security/cve/CVE-2020-21535/ SUSE CVE CVE-2020-21535 page https://www.suse.com/security/cve/CVE-2020-21680/ SUSE CVE CVE-2020-21680 page https://www.suse.com/security/cve/CVE-2020-21681/ SUSE CVE CVE-2020-21681 page https://www.suse.com/security/cve/CVE-2020-21682/ SUSE CVE CVE-2020-21682 page https://www.suse.com/security/cve/CVE-2020-21683/ SUSE CVE CVE-2020-21683 page https://www.suse.com/security/cve/CVE-2021-32280/ SUSE CVE CVE-2021-32280 page SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Linux Enterprise Workstation Extension 15 SP3 transfig-3.2.8b-4.15.1 transfig-3.2.8b-4.15.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 transfig-3.2.8b-4.15.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP3 fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c. CVE-2020-21529 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21529.html CVE-2020-21529 https://bugzilla.suse.com/1190618 SUSE Bug 1190618 fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c. CVE-2020-21530 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21530.html CVE-2020-21530 https://bugzilla.suse.com/1190615 SUSE Bug 1190615 fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c. CVE-2020-21531 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21531.html CVE-2020-21531 https://bugzilla.suse.com/1190617 SUSE Bug 1190617 fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c. CVE-2020-21532 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21532.html CVE-2020-21532 https://bugzilla.suse.com/1190616 SUSE Bug 1190616 fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c. CVE-2020-21533 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21533.html CVE-2020-21533 https://bugzilla.suse.com/1190612 SUSE Bug 1190612 fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c. CVE-2020-21534 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21534.html CVE-2020-21534 https://bugzilla.suse.com/1190611 SUSE Bug 1190611 fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. CVE-2020-21535 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21535.html CVE-2020-21535 https://bugzilla.suse.com/1190607 SUSE Bug 1190607 A stack-based buffer overflow in the put_arrow() component in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pict2e format. CVE-2020-21680 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21680.html CVE-2020-21680 https://bugzilla.suse.com/1189343 SUSE Bug 1189343 A global buffer overflow in the set_color component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format. CVE-2020-21681 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21681.html CVE-2020-21681 https://bugzilla.suse.com/1189345 SUSE Bug 1189345 A global buffer overflow in the set_fill component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format. CVE-2020-21682 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21682.html CVE-2020-21682 https://bugzilla.suse.com/1189346 SUSE Bug 1189346 A global buffer overflow in the shade_or_tint_name_after_declare_color in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks format. CVE-2020-21683 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2020-21683.html CVE-2020-21683 https://bugzilla.suse.com/1189325 SUSE Bug 1189325 An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8. CVE-2021-32280 SUSE Linux Enterprise Workstation Extension 15 SP2:transfig-3.2.8b-4.15.1 SUSE Linux Enterprise Workstation Extension 15 SP3:transfig-3.2.8b-4.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213584-1/ https://www.suse.com/security/cve/CVE-2021-32280.html CVE-2021-32280 https://bugzilla.suse.com/1192019 SUSE Bug 1192019