Overview

File _patchinfo of Package patchinfo.8599

<patchinfo incident="8599">
  <issue tracker="bnc" id="1106531">VUL-1: CVE-2018-16140: transfig: A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3.2.7aallows an attacker to write prior to the beginning of the buffer via a crafted.fig file.</issue>
  <issue tracker="cve" id="2018-16140"/>
  <category>security</category>
  <rating>low</rating>
  <packager>WernerFink</packager>
  <description>This update for transfig fixes the following issues:

Security issue fixed:

- CVE-2018-16140: Fixed a buffer underwrite vulnerability in get_line() in
  read.c, which allowed an attacker to write prior to the beginning of the
  buffer via specially crafted .fig file (bsc#1106531)
</description>
  <summary>Security update for transfig</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places