Updated transfig packages fix security vulnerabilities
Publication date: 31 Oct 2025Modification date: 31 Oct 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-46397 , CVE-2025-46398 , CVE-2025-46399 , CVE-2025-46400
Description
fig2dev stack-overflow. (CVE-2025-46397)
fig2dev stack-overflow via read_objects. (CVE-2025-46398)
fig2dev segmentation fault vulnerability. (CVE-2025-46399)
fig2dev segmentation fault in read_arcobject. (CVE-2025-46400)
References
- https://bugs.mageia.org/show_bug.cgi?id=34309
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/ZDNSWLCQENGSN2O2GVDL64VL52AR7HAU/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46397
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46398
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46399
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46400
SRPMS
9/core
- transfig-3.2.9a-1.1.mga9