Hi Thomas!
> would you mind to wait for the next release, which should be due in
> about two to four weeks? Bug #890016 is triggered by a pointer in an
> object struct which is left un-initialized in read1_3.c. The code in
> read1_3.c is full of these things and needs more proper initializing
> an
Package: fig2dev
Version: 1:3.2.6a-6
Severity: important
Tags: security
null dereference running fig2dev with "-L pdf poc" option
Running 'fig2dev -L pdf poc' with the attached file raises null dereference
which may allow a remote attacker to cause denial-of-service attack
I expected the program
2 matches
Mail list logo
