Advisories » MGASA-2024-0125

Updated xfig packages fix security vulnerability

Publication date: 12 Apr 2024
Modification date: 12 Apr 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-45920

Description

Xfig v3.2.8 was discovered to contain a NULL pointer dereference when
calling XGetWMHints(). (CVE-2023-45920)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33088
• https://lwn.net/Articles/969307/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45920

SRPMS

9/core

• xfig-3.2.8b-3.1.mga9