Gentoo: GLSA-200604-14 Normal: Dia Code Execution Via XFig Import

Gentoo Linux Security Advisory GLSA 200604-14 https://security.gentoo.org/ Severity: Normal Title: Dia: Arbitrary code execution through XFig import Date: April 23, 2006 Bugs: #128107 ID: 200604-14

Synopsis ======= Buffer overflows in Dia's XFig import could allow remote attackers to execute arbitrary code.
Background ========= Dia is a GTK+ based diagram creation program.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-office/dia < 0.94-r5 >= 0.94-r5
========== infamous41md discovered multiple buffer overflows in Dia's XFig file import plugin.
Impact ===== By enticing a user to import a specially crafted XFig file into Dia, an attacker could exploit ...