FERRAMENTAS LINUX: Critical Security Update: gnuplot Patches 7 Vulnerabilities in openSUSE Leap 15.4/15.6

quarta-feira, 4 de junho de 2025

Critical Security Update: gnuplot Patches 7 Vulnerabilities in openSUSE Leap 15.4/15.6

 

opensUSE

Critical security update for gnuplot on openSUSE Leap 15.4/15.6 fixes 7 CVEs, including heap overflows & segmentation faults. Learn how to patch and secure your Linux systems now.

Linux administrators and developers: A high-priority security update for gnuplot (v5.4.3) has been released for openSUSE Leap 15.4, 15.6, and Server Applications Module 15-SP6, addressing 7 critical CVEs that could lead to segmentation faults, heap overflows, and remote code execution.

Vulnerabilities Patched in This Update

The update resolves the following security flaws, which impact data visualization stability and system integrity:

  1. CVE-2025-31176: Invalid read causing segmentation fault in plot3d_points.

  2. CVE-2025-31177: Heap-buffer overflow via improper bounds check in utf8_copy_one.

  3. CVE-2025-31178: Unvalidated user input leading to crash in GetAnnotateString.

  4. CVE-2025-31179: Time value verification failure in xstrftime.

  5. CVE-2025-31180: Unchecked pointer access in CANVAS_text.

  6. CVE-2025-31181: Double fclose() call crashing X11 graphics.

  7. CVE-2025-3359: Out-of-bounds read when parsing malicious font names.

Why This Matters: These vulnerabilities could be exploited in scientific computing, server environments, or automated data visualization pipelines, making immediate patching essential for security compliance.

How to Apply the Patch

To secure your system, apply the update using one of these methods:

For openSUSE Leap 15.4

bash
Copy
Download
zypper in -t patch SUSE-2025-1811=1

For openSUSE Leap 15.6

bash
Copy
Download
zypper in -t patch openSUSE-SLE-15.6-2025-1811=1

For Server Applications Module 15-SP6

bash
Copy
Download
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1811=1

Alternatively, use YaST Online Update for automated patch management.

Affected Packages & Architectures

DistributionPackageArchitectures
openSUSE Leap 15.4gnuplotgnuplot-debuginfognuplot-docaarch64, ppc64le, s390x, x86_64, i586
openSUSE Leap 15.6gnuplotgnuplot-debuginfognuplot-docaarch64, ppc64le, s390x, x86_64
Server Applications Module 15-SP6gnuplotgnuplot-debuginfognuplot-docaarch64, ppc64le, s390x, x86_64

Additional References & CVE Details

For full technical analysis, review the official advisories:


Cezar Henrique at
Marcadores: Linux, Android, Segurança , , , ,

Nenhum comentário:

Postar um comentário

Assinar: Postar comentários (Atom)