Fig2dev

This hub aggregates every CVE we track for Fig2dev, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Fig2dev.

• CVE-2025-46400Xfig: fig2dev segmentation fault in read_arcobject5.5Apr 23, 2025
• CVE-2025-46399Xfig: transfig: fig2dev segmentation fault vulnerability5.5Apr 23, 2025
• CVE-2025-46398Xfig: fig2dev stack-overflow via read_objects5.5Apr 23, 2025
• CVE-2025-46397Xfig: xfig: stack-overflow allows possible code execution via local input manipulation7.8Apr 23, 2025
• CVE-2025-31162fig2dev float point exception6.6Mar 28, 2025
• CVE-2025-31163fig2dev segmentation fault6.6Mar 28, 2025
• CVE-2025-31164fig2dev heap-buffer overflow6.6Mar 28, 2025
• CVE-2021-37530A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the open_stream function in readpics.c.5.5Jan 12, 2022
• CVE-2021-37529A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream function in readpics.c, which could cause a denial of service (context-dependent).5.5Jan 12, 2022
• CVE-2021-32280An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Servi...5.5Sep 20, 2021
• CVE-2020-21535fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.5.5Sep 16, 2021
• CVE-2020-21534fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.5.5Sep 16, 2021
• CVE-2020-21533fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.5.5Sep 16, 2021
• CVE-2020-21530fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.5.5Sep 16, 2021
• CVE-2020-21531fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.5.5Sep 16, 2021