Xfig fig2dev is a tool for printing and exporting files in .fig format. version 3.2.8a of Fig2dev contains a buffer overflow vulnerability that stems from a flawed boundary check in the program’s read objects() function, which could be exploited by an attacker to provide carefully crafted malicious input that could cause the application to crash.