CVE-2006-1550

EPSS 4.0%

dia - programming error

Published: 3/30/2006Modified: 3/9/2026

Also known as:DSA-1025-1DEBIAN-CVE-2006-1550

Description

Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.

Affected packages (2)

Debian/diafrom 0, < 0.94.0-18
Debian/diafrom 0, < 0.88.1-3woody1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1550