You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa transfig

Sigurnosni nedostaci programskog paketa transfig

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2020-01-25 06:33:58.982369

Name : transfig
Product : Fedora 31
Version : 3.2.7b
Release : 1.fc31
Summary : Utility for converting FIG files (made by xfig) to other formats
Description :
The transfig utility creates a makefile which translates FIG (created
by xfig) or PIC figures into a specified LaTeX graphics language (for
example, PostScript(TM)). Transfig is used to create TeX documents
which are portable (i.e., they can be printed in a wide variety of

Install transfig if you need a utility for translating FIG or PIC
figures into certain graphics languages.

Update Information:

– Security fix for CVE-2019-19746, CVE-2019-19797 – New upstream release 3.2.7b
– Add patch fixing CVE-2019-19746 (rhbz#1787040) – Add patch fixing
CVE-2019-19797 (rhbz#1786726)

* Wed Jan 15 2020 Hans de Goede <> – 1:3.2.7b-1
– New upstream release 3.2.7b
– Add patch fixing CVE-2019-19746 (rhbz#1787040)
– Add patch fixing CVE-2019-19797 (rhbz#1786726)

[ 1 ] Bug #1786726 – CVE-2019-19797 transfig: out-of-bounds write in read_colordef in read.c
[ 2 ] Bug #1787040 – CVE-2019-19746 transfig: integer overflow leads to out-of-bounds write in make_arrow in arrow.c

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-5d0f0593ae’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorToni Vugdelija
Cert idNCERT-REF-2020-01-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa fontforge

Otkriven je sigurnosni nedostatak u programskom paketu fontforge za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izazivanje DoS stanja....