High severity7.8NVD Advisory· Published Jun 15, 2017· Updated Jun 17, 2026
CVE-2017-9670
CVE-2017-9670
Description
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact when a victim opens a specially crafted file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords5 versionspkg:rpm/opensuse/gnuplot&distro=openSUSE%20Tumbleweedpkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
< 5.4.2-1.3+ 4 more
- (no CPE)range: < 5.4.2-1.3
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
Patches
Vulnerability mechanics
References
1- sourceforge.net/p/gnuplot/bugs/1933/nvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.