CVE-2009-4228
EPSS 0.67%Published: 12/8/2009Modified: 4/28/2026
Description
Stack consumption vulnerability in u_bound.c in Xfig 3.2.5b and earlier allows remote attackers to cause a denial of service (application crash) via a long string in a malformed .fig file that uses the 1.3 file format, possibly related to the readfp_fig function in f_read.c.
Affected packages (1)
- Debian/xfigfrom 0