[Apollo] Advisories Statistics light light Login

RLSA-2026:0756

Security Mirrored from RHSA-2026:0756
Issued at: 2026-01-20
Updated at: 2026-01-21

Synopsis

Moderate: transfig security update



Description

The transfig utility creates a makefile which translates FIG (created by xfig) or PIC figures into a specified LaTeX graphics language (for example, PostScript(TM)). Transfig is used to create TeX documents which are portable (i.e., they can be printed in a wide variety of environments). Install transfig if you need a utility for translating FIG or PIC figures into certain graphics languages.

Security Fix(es):

* xfig: xfig: Stack-overflow allows possible code execution via local input manipulation (CVE-2025-46397)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2362058

CVEs

CVE-2025-46397

Affected packages

Rocky Linux 8 aarch64 - PowerTools

transfig-1:3.2.6a-5.el8_10.aarch64.rpm transfig-1:3.2.6a-5.el8_10.src.rpm transfig-debuginfo-1:3.2.6a-5.el8_10.aarch64.rpm transfig-debugsource-1:3.2.6a-5.el8_10.aarch64.rpm

Rocky Linux 8 x86_64 - PowerTools

transfig-1:3.2.6a-5.el8_10.src.rpm transfig-1:3.2.6a-5.el8_10.x86_64.rpm transfig-debuginfo-1:3.2.6a-5.el8_10.x86_64.rpm transfig-debugsource-1:3.2.6a-5.el8_10.x86_64.rpm