CVE-2006-1550

Publication date 30 March 2006

Last updated 17 July 2025

Ubuntu priority

Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
dia	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Fixed 0.94.0-17.1ubuntu3

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-266-1
dia vulnerabilities
3 April 2006

Other references

https://www.cve.org/CVERecord?id=CVE-2006-1550