Hi all, I'm the Fedora package maintainer of xfig, I've created a patch for xfig-3.2.5b, which fixes this overflow. Note that after this xfig will still crash on plane.fig, going into a recursive function call loop inside u_bound.c, till it exceeds its maximum stack size.
This may caused be caused by the use of an uninitialzed variable resolution (for 1.3 files) inside f_read.c:readfp_fig() when calling scale_figure(). Given that this other bug has lingered for quite a long while, I'm wondering if 1.3 format support is still functional at all, and if it would not be better to simply disable it ? Can anyone provide me with some valid 1.3 format files to see how much work it will be to fix 1.3 format support ? See: https://bugzilla.redhat.com/show_bug.cgi?id=543905 For discussion and: https://bugzilla.redhat.com/attachment.cgi?id=376059&action=edit For the patch. Regards, Hans -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
