411 matches found
SUSE-SU-2025:01811-2 Security update for gnuplot
This update for gnuplot fixes the following issues: - CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. - CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. - CVE-2025-31178: unvalidated user input leads to segmentatio...
Security update for gnuplot
This update for gnuplot fixes the following issues: CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. CVE-2025-31178: unvalidated user input leads to segmentation faul...
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : Gnuplot vulnerabilities (USN-7589-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7589-1 advisory. Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related...
Ubuntu: Security Advisory (USN-7589-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7589-1 gnuplot vulnerabilities
Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related issues. An attacker could possibly use these issues to cause Gnuplot to experience a buffer overflow, resulting in a denial of service or arbitrary code execution. These issues on...
USN-7589-1: Gnuplot vulnerabilities
Tim Blazytko, Cornelius Aschermann, Sergej Schumilo, and Nils Bars discovered that Gnuplot had several memory-related issues. An attacker could possibly use these issues to cause Gnuplot to experience a buffer overflow, resulting in a denial of service or arbitrary code execution. These issues on...
SUSE SLES12 Security Update : gnuplot (SUSE-SU-2025:01805-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01805-1 advisory. - CVE-2025-31178: unvalidated user input leads to segmentation fault on GetAnnotateString bsc1240327. - CVE-2025-31179: improper verification ...
Security update for gnuplot
This update for gnuplot fixes the following issues: CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. CVE-2025-31178: unvalidated user input leads to segmentation faul...
SUSE-SU-2025:01805-1 Security update for gnuplot
This update for gnuplot fixes the following issues: - CVE-2025-31178: unvalidated user input leads to segmentation fault on GetAnnotateString bsc1240327. - CVE-2025-31179: improper verification of time values leads to segmentation fault on xstrftime bsc1240328. - CVE-2025-31181: double fclose cal...
Photon OS 4.0: Gnuplot PHSA-2025-4.0-0806
An update of the gnuplot package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0806. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Important Photon OS Security Update - PHSA-2025-4.0-0806
Updates of 'freetype2', 'gnuplot' packages of Photon OS have been released...
CVE-2023-36812
OpenTSDB is a open source, distributed, scalable Time Series Database TSDB. OpenTSDB is vulnerable to Remote Code Execution vulnerability by writing user-controlled input to Gnuplot configuration file and running Gnuplot with the generated configuration. This issue has been patched in commit...
CVE-2021-29369
The gnuplot package prior to version 0.1.0 for Node.js allows code execution via shell metacharacters in Gnuplot commands...
CVE-2021-33360
An issue found in Stoqey gnuplot v.0.0.3 and earlier allows attackers to execute arbitrary code via the src/index.ts, plotCallack, childprocess, and/or filePath parameters...
CVE-2020-35476
A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. tsd/GraphHandler.java attempted to prevent comma...
CVE-2019-2820
Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: Gnuplot. The supported version that is affected is 11.4. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise...
gnuplot-6.0.2-3.1 on GA media (moderate)
gnuplot-6.0.2-3.1 on GA media Announcement ID: openSUSE-SU-2025:15134-1 Rating: moderate Cross-References: CVE-2025-31176 CVE-2025-31177 CVE-2025-31178 CVE-2025-31179 CVE-2025-31180 CVE-2025-31181 CVE-2025-3359 CVSS scores: CVE-2025-31176 SUSE : 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...
OPENSUSE-SU-2025:15134-1 gnuplot-6.0.2-3.1 on GA media
These are all security issues fixed in the gnuplot-6.0.2-3.1 package on the GA media of openSUSE Tumbleweed...
Photon OS 5.0: Gnuplot PHSA-2025-5.0-0522
An update of the gnuplot package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0522. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Critical Photon OS Security Update - PHSA-2025-5.0-0522
Updates of 'gnuplot', 'libsoup', 'redis' packages of Photon OS have been released...