Debian Gnuplot vulnerabilities

CVE-2025-31177 [MEDIUM] CVE-2025-31177: gnuplot - gnuplot is affected by a heap buffer overflow at function utf8_copy_one. gnuplot is affected by a heap buffer overflow at function utf8_copy_one. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-31176 [MEDIUM] CVE-2025-31176: gnuplot - A flaw was found in gnuplot. The plot3d_points() function may lead to a segmenta... A flaw was found in gnuplot. The plot3d_points() function may lead to a segmentation fault and cause a system crash. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-31180 [MEDIUM] CVE-2025-31180: gnuplot - A flaw was found in gnuplot. The CANVAS_text() function may lead to a segmentati... A flaw was found in gnuplot. The CANVAS_text() function may lead to a segmentation fault and cause a system crash. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-31179 [MEDIUM] CVE-2025-31179: gnuplot - A flaw was found in gnuplot. The xstrftime() function may lead to a segmentation... A flaw was found in gnuplot. The xstrftime() function may lead to a segmentation fault, causing a system crash. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-31178 [MEDIUM] CVE-2025-31178: gnuplot - A flaw was found in gnuplot. The GetAnnotateString() function may lead to a segm... A flaw was found in gnuplot. The GetAnnotateString() function may lead to a segmentation fault and cause a system crash. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-3359 [MEDIUM] CVE-2025-3359: gnuplot - A flaw was found in GNUPlot. A segmentation fault via IO_str_init_static_interna... A flaw was found in GNUPlot. A segmentation fault via IO_str_init_static_internal may jeopardize the environment. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-31181 [MEDIUM] CVE-2025-31181: gnuplot - A flaw was found in gnuplot. The X11_graphics() function may lead to a segmentat... A flaw was found in gnuplot. The X11_graphics() function may lead to a segmentation fault and cause a system crash. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2021-44917 [MEDIUM] CVE-2021-44917: gnuplot - A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function ... A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function in graph3d.c, which could cause a Arithmetic exception and application crash. Scope: local bookworm: resolved (fixed in 5.4.2+dfsg2-2) bullseye: resolved (fixed in 5.4.1+dfsg1-1+deb11u1) forky: resolved (fixed in 5.4.2+dfsg2-2) sid: resolved (fixed in 5.4.2+dfsg2-2) trixie: resolved (f

CVE-2020-25969 [CRITICAL] CVE-2020-25969: gnuplot - gnuplot v5.5 was discovered to contain a buffer overflow via the function plotre... gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest(). Scope: local bookworm: open bullseye: open forky: resolved (fixed in 6.0.0+dfsg1-1) sid: resolved (fixed in 6.0.0+dfsg1-1) trixie: resolved (fixed in 6.0.0+dfsg1-1)

CVE-2020-25412 [CRITICAL] CVE-2020-25412: gnuplot - com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strn... com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy() that may lead to arbitrary code execution. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 6.0.0+dfsg1-1) sid: resolved (fixed in 6.0.0+dfsg1-1) trixie: resolved (fixed in 6.0.0+dfsg1-1)

CVE-2020-25559 [HIGH] CVE-2020-25559: gnuplot - gnuplot 5.5 is affected by double free when executing print_set_output. This may... gnuplot 5.5 is affected by double free when executing print_set_output. This may result in context-dependent arbitrary code execution. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 6.0.0+dfsg1-1) sid: resolved (fixed in 6.0.0+dfsg1-1) trixie: resolved (fixed in 6.0.0+dfsg1-1)

CVE-2018-19492 [HIGH] CVE-2018-19492: gnuplot - An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an atta... An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrm_options function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the Gnuplot pngcairo terminal is used as a backend. Scope: local bookw

CVE-2018-19491 [HIGH] CVE-2018-19491: gnuplot - An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attac... An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PS_options function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the Gnuplot postscript terminal is used as a backend. Scope: local bookworm:

CVE-2018-19490 [HIGH] CVE-2018-19490: gnuplot - An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue allows an att... An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue allows an attacker to conduct a heap-based buffer overflow with an arbitrary amount of data in df_generate_ascii_array_entry. To exploit this vulnerability, an attacker must pass an overlong string as the right bound of the range argument that is passed to the plot function. Scope: local bookworm: re

CVE-2017-9670 [HIGH] CVE-2017-9670: gnuplot - An uninitialized stack variable vulnerability in load_tic_series() in set.c in g... An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact when a victim opens a specially crafted file. Scope: local bookworm: resolved (fixed in 5.0.5+dfsg1-7) bullseye: resolved (fixed in 5.0.5+dfsg1-