projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1e1d127) | patch
package/gnuplot: security bump to version 5.4.1
authorFabrice Fontaine <fontaine.fabrice@gmail.com>
Wed, 2 Dec 2020 06:32:43 +0000 (07:32 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 2 Dec 2020 07:16:16 +0000 (08:16 +0100)
commitbd5b91fb425b4fc23aadd4f12c06543247d1dd89
tree7d83086c12d60a6334918de19e9beeceb3525c7dtree
parent1e1d1278c7112f44ce694958047ee512f20b4360commit | diff
package/gnuplot: security bump to version 5.4.1

- Fix CVE-2020-25412: com_line() in command.c in gnuplot 5.4 leads to an
  out-of-bounds-write from strncpy() that may lead to arbitrary code
  execution.
- Drop second patch (already in version)
- Update indentation in hash file (two spaces)

http://gnuplot.info/ReleaseNotes_5_4_1.html

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/gnuplot/0002-without-history.patch [deleted file] blob | history
package/gnuplot/gnuplot.hash diff | blob | history
package/gnuplot/gnuplot.mk diff | blob | history