- Vulnerability/
- USN-3760-1
USN-3760-1: transfig vulnerability
First published: Thu Sep 06 2018(Updated: )
It was discovered that transfig incorrectly handled certain FIG files. An attacker could possibly use this to execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/transfig | <1:3.2.5.e-5ubuntu0.1 | 1:3.2.5.e-5ubuntu0.1 |
| Ubuntu Linux | =16.04 | |
| All of | ||
| ubuntu/transfig | <1:3.2.5.e-1ubuntu1.1 | 1:3.2.5.e-1ubuntu1.1 |
| Ubuntu Linux | =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this transfig vulnerability?
The vulnerability ID for this transfig vulnerability is CVE-2018-16140.
What is the severity of CVE-2018-16140?
The severity of CVE-2018-16140 is not specified.
How does the transfig vulnerability affect Ubuntu 16.04?
The transfig vulnerability affects Ubuntu 16.04 if transfig package version 1:3.2.5.e-5ubuntu0.1 is installed.
How does the transfig vulnerability affect Ubuntu 14.04?
The transfig vulnerability affects Ubuntu 14.04 if transfig package version 1:3.2.5.e-1ubuntu1.1 is installed.
How can I fix the transfig vulnerability?
To fix the transfig vulnerability, update the transfig package to version 1:3.2.5.e-5ubuntu0.1 for Ubuntu 16.04 and version 1:3.2.5.e-1ubuntu1.1 for Ubuntu 14.04.
- agent/severity
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/title
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/16.04
- version/ubuntu linux/14.04