Mageia 2021-0127: gnuplot security update
Summary
Double free when executing print_set_output() (CVE-2020-25559).
Additionally, a missing require for gnuplot has been added to
gnuplot-qt package.
References
- https://bugs.mageia.org/show_bug.cgi?id=28553
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CKEZYDL7ZTBAXXRLNGPXPFNXRKWZ3MXC/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25559
Resolution
MGASA-2021-0127 - Updated gnuplot packages fix a security vulnerability
SRPMS
- 7/core/gnuplot-5.2.2-5.2.mga7