xfig 3.2.7 is vulnerable to Buffer Overflow. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992395 https://sourceforge.net/p/mcj/tickets/136/
Created xfig tracking bugs for this issue: Affects: epel-7 [bug 2142542] Affects: epel-8 [bug 2142543] Affects: fedora-35 [bug 2142541] Affects: fedora-36 [bug 2142544]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-40241