CVE-2019-2820

CVE-2019-2820 affects Oracle Solaris 11.4 (Oracle Sun Systems Products Suite) in the Gnuplot subcomponent. The vulnerability description indicates a low-privileged, logon-based attacker can compromise Oracle Solaris, with exploitation requiring user interaction and potentially leading to takeover...

Oracle Solaris Critical Patch Update : jul2019_SRU11_4_10_3_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Sun Systems Products Suite component: Zones. The supported version that is affected is 11.4. Easily exploitable vulnerability allows low privileged...

openSUSE Security Update : gnuplot (openSUSE-2019-1216)

This update for gnuplot fixes the following issues : Security issues fixed : - CVE-2018-19492: Fixed a buffer overflow in cairotrmoptions function bsc1117463 - CVE-2018-19491: Fixed a buffer overlow in the PSoptions function bsc1117464 - CVE-2018-19490: Fixed a heap-based buffer overflow in the...

openSUSE: Security Advisory for gnuplot (openSUSE-SU-2019:1216-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:1216-1 Security update for gnuplot

This update for gnuplot fixes the following issues: Security issues fixed: - CVE-2018-19492: Fixed a buffer overflow in cairotrmoptions function bsc1117463 - CVE-2018-19491: Fixed a buffer overlow in the PSoptions function bsc1117464 - CVE-2018-19490: Fixed a heap-based buffer overflow in the...

Security update for gnuplot (moderate)

openSUSE Security Update: Security update for gnuplot Announcement ID: openSUSE-SU-2019:1216-1 Rating: moderate References: 1117463 1117464 1117465 Cross-References: CVE-2018-19490 CVE-2018-19491 CVE-2018-19492 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilities is no...

SUSE SLES15 Security Update : gnuplot (SUSE-SU-2019:0904-1)

This update for gnuplot fixes the following issues : Security issues fixed : CVE-2018-19492: Fixed a buffer overflow in cairotrmoptions function bsc1117463 CVE-2018-19491: Fixed a buffer overlow in the PSoptions function bsc1117464 CVE-2018-19490: Fixed a heap-based buffer overflow in the...

SUSE-SU-2019:0904-1 Security update for gnuplot

This update for gnuplot fixes the following issues: Security issues fixed: - CVE-2018-19492: Fixed a buffer overflow in cairotrmoptions function bsc1117463 - CVE-2018-19491: Fixed a buffer overlow in the PSoptions function bsc1117464 - CVE-2018-19490: Fixed a heap-based buffer overflow in the...

CVE-2018-19492

An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrmoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when...

CVE-2018-19491

An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PSoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the...

CVE-2018-19490

An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue allows an attacker to conduct a heap-based buffer overflow with an arbitrary amount of data in dfgenerateasciiarrayentry. To exploit this vulnerability, an attacker must pass an overlong string as the right bound of the range...

Debian DLA-1597-1 : gnuplot security update

gnuplot, a command-line driven interactive plotting program, has been examined with fuzzing by Tim Blazytko, Cornelius Aschermann, Sergej Schumilo and Nils Bars. They found various overflow cases which might lead to the execution of arbitrary code. Due to special toolchain hardening in Debian,...

[SECURITY] [DLA 1597-1] gnuplot security update

Package : gnuplot Version : 4.6.6-2+deb8u1 CVE ID : CVE-2018-19490 CVE-2018-19491 CVE-2018-19492 gnuplot, a command-line driven interactive plotting program, has been examined with fuzzing by Tim Blazytko, Cornelius Aschermann, Sergej Schumilo and Nils Bars. They found various overflow cases whic...

DLA-1597-1 gnuplot - security update

Bulletin has no description...

Debian: Security Advisory (DLA-1597-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gnuplot Buffer Overflow Vulnerability (CNVD-2019-00240)

Gnuplot is an open source plotting software. A buffer overflow vulnerability exists in the datafile.c file in Gnuplot version 5.2.5. An attacker can exploit this vulnerability to hijack the control flow with the help of extra-long strings...

Gnuplot Buffer Overflow Vulnerability (CNVD-2019-00241)

Gnuplot is an open source plotting software. A buffer overflow vulnerability exists in the post.trm file in Gnuplot version 5.2.5, where the program fails to detect the size of arguments sent to the 'set font' function. The vulnerability can be exploited to hijack control flow with font names of...

Gnuplot Buffer Overflow Vulnerability

Gnuplot is an open source plotting software. A buffer overflow vulnerability exists in the cairo.trm file in Gnuplot version 5.2.5, where the program fails to detect the size of arguments sent to the 'set font' function. The vulnerability can be exploited to hijack control flow with font names of...

Buffer overflow

An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PSoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the...

Buffer overflow

An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrmoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when...