CVE-2017-9670

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2017-9670

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-9670.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2017-9670

Downstream

DEBIAN-CVE-2017-9670

SUSE-SU-2020:1660-1

UBUNTU-CVE-2017-9670

openSUSE-SU-2024:10800-1

Related

Withdrawn

2026-01-27T04:14:20.293803Z

Published

2017-06-15T13:29:00Z

Modified

2026-01-27T04:14:20.293803Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An uninitialized stack variable vulnerability in loadticseries() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact when a victim opens a specially crafted file.

References

https://sourceforge.net/p/gnuplot/bugs/1933/

Affected packages