CVE-2009-4227

Name of the Vulnerable Software and Affected Versions Xfig version 3.2.5b and earlier Transfig version 3.2.5a and earlier

Description The issue is related to a stack-based buffer overflow in certain functions, specifically read 1 3 textobject in Xfig and read textobject in Transfig, when processing a long string in a malformed .fig file that uses the 1.3 file format. This could allow remote attackers to execute arbitrary code.

Recommendations For Xfig version 3.2.5b and earlier, consider updating to a newer version to resolve the issue. For Transfig version 3.2.5a and earlier, consider updating to a newer version to resolve the issue. As a temporary workaround, consider restricting the use of the read 1 3 textobject function in Xfig and the read textobject function in Transfig until a patch is available. Avoid using the 1.3 file format in .fig files until the issue is resolved.