Unrated severityNVD Advisory· Published Nov 23, 2018· Updated Aug 5, 2024
CVE-2018-19491
CVE-2018-19491
Description
An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PS_options function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the Gnuplot postscript terminal is used as a backend.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords6 versionspkg:rpm/opensuse/gnuplot&distro=openSUSE%20Leap%2015.0pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/gnuplot&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
< 5.2.2-lp150.3.3.1+ 5 more
- (no CPE)range: < 5.2.2-lp150.3.3.1
- (no CPE)range: < 5.2.2-3.3.29
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
- (no CPE)range: < 4.6.5-3.3.74
Patches
Vulnerability mechanics
References
6- lists.opensuse.org/opensuse-security-announce/2019-04/msg00066.htmlmitrevendor-advisoryx_refsource_SUSE
- usn.ubuntu.com/4541-1/mitrevendor-advisoryx_refsource_UBUNTU
- lists.debian.org/debian-lts-announce/2018/11/msg00031.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2018/11/msg00035.htmlmitremailing-listx_refsource_MLIST
- sourceforge.net/p/gnuplot/bugs/2094/mitrex_refsource_MISC
- sourceforge.net/p/gnuplot/gnuplot-main/ci/d5020716834582b20a5e12cdd49f39ee4f9dd949/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.