CVE Request -- xfig

[Jan Lieskovsky <jlieskov () redhat com>]

Hi Josh, Steve, vendors,

  PEDAMACHEPHEPTOLIONES reported [1] a stack-based buffer overflow present
in Xfig by loading malformed .FIG files.

From what I can tell, xfig-3.2.d doesn't seem to be affected by this,
but xfig-3.2.4 && xfig-3.2.5 clearly are.

Also, the reporter claims about arbitrary code execution possibility,
but I don't think this is possible due the non-executable stack protection.

Anyway, could you allocate a CVE identifier?

Thanks && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559274