fig2dev (Ubuntu:20.04:LTS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Ubuntu:20.04:LTS package fig2dev, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2025-46397 — CVSS 7.8 (high): A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline function.
CVE-2025-46398 — CVSS 5.5 (medium): In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects…
CVE-2025-46399 — CVSS 5.5 (medium): A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function.
CVE-2025-46400 — CVSS 5.5 (medium): In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via…