Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2025:01835-1 moderate: transfig buffer overflow fixes and more

suse
Calendar Grey June 9, 2025
Dist Suse Esm H88
A crucial enhancement for transfig in SUSE addresses problems such as segmentation errors and buffer overflows. Please respond promptly.
* bsc#1225947 * bsc#1230427 * bsc#1240379 * bsc#1240380 * bsc#1240381

Summary

## This update for transfig fixes the following issues: Update to fig2dev version 3.2.9a * CVE-2025-31162: Fixed a floating point exception in fig2dev in get_slope function (bsc#1240380). * CVE-2025-31163: Fixed a segmentation fault in fig2dev in put_patternarc function (bsc#1240381). * CVE-2025-31164: Fixed a heap buffer overflow in fig2dev in create_line_with_spline function (bsc#1240379). * CVE-2025-46397: Fixed a stack buffer overflow in fig2dev in bezier_spline function (bsc#1243260). * CVE-2025-46398: Fixed a stack buffer overflow in fig2dev in read_objects function (bsc#1243262). * CVE-2025-46399: Fixed a segmentation fault in fig2dev in genge_itp_spline function (bsc#1243263). * CVE-2025-46400: Fixed a segmentation fault in fig2dev in read_arcobject function (bsc#1243261).

Topics%20covered

Topics Covered

security advisory moderate buffer overflow SUSE segmentation fault transfig

References

* bsc#1225947

* bsc#1230427

* bsc#1240379

* bsc#1240380

* bsc#1240381

* bsc#1243260

* bsc#1243261

* bsc#1243262

* bsc#1243263

Cross-

* CVE-2025-31162

* CVE-2025-31163

* CVE-2025-31164

* CVE-2025-46397

* CVE-2025-46398

* CVE-2025-46399

* CVE-2025-46400

CVSS scores:

* CVE-2025-31162 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

* CVE-2025-31162 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

* CVE-2025-31163 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

* CVE-2025-31163 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

* CVE-2025-31164 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

* CVE-2025-31164 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

Announcement ID: SUSE-SU-2025:01835-1
Release Date: 2025-06-09T13:24:47Z
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate buffer overflow SUSE segmentation fault transfig

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here