[ubuntu/oracular-security] fig2dev 1:3.2.9-4ubuntu0.1 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Mon Jun 23 01:20:56 UTC 2025
fig2dev (1:3.2.9-4ubuntu0.1) oracular-security; urgency=medium
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2025-31162.patch: Reject huge pattern lengths
- debian/patches/CVE-2025-31163.patch: Reject arcs with co-incident
points
- CVE-2025-31162
- CVE-2025-31163
* SECURITY UPDATE: Buffer Overflow
- debian/patches/CVE-2025-31164.patch: Allow an arc-box with zero
radius
- CVE-2025-31164
Date: 2025-06-19 05:30:22.455144+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/fig2dev/1:3.2.9-4ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list