summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorZhang Peng <peng.zhang1.cn@windriver.com>2025-09-02 15:44:30 +0800
committerAnuj Mittal <anuj.mittal@intel.com>2025-09-12 08:15:12 +0800
commit02d046e20dbfde2cfce7c34be2a2ab1af2395f1f (patch)
treed57bca963851bee07848b36969870e25b5106174
parent3d810d7d3bf03241c257a2b6c732cba4e26d9cf2 (diff)
downloadmeta-openembedded-02d046e20dbfde2cfce7c34be2a2ab1af2395f1f.tar.gz
gnuplot: fix CVE-2025-31179
CVE-2025-31179: A flaw was found in gnuplot. The xstrftime() function may lead to a segmentation fault, causing a system crash. Reference: [https://nvd.nist.gov/vuln/detail/CVE-2025-31179] Upstream patches: [https://sourceforge.net/p/gnuplot/gnuplot-main/ci/ed647df512786b3c94429dd5c864715301e03ea5/] Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
-rw-r--r--meta-oe/recipes-extended/gnuplot/gnuplot/CVE-2025-31179.patch35
-rw-r--r--meta-oe/recipes-extended/gnuplot/gnuplot_5.4.3.bb1
2 files changed, 36 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/gnuplot/gnuplot/CVE-2025-31179.patch b/meta-oe/recipes-extended/gnuplot/gnuplot/CVE-2025-31179.patch
new file mode 100644
index 0000000000..a7ec6e78f0
--- /dev/null
+++ b/meta-oe/recipes-extended/gnuplot/gnuplot/CVE-2025-31179.patch
@@ -0,0 +1,35 @@
1From 92c147cbcb8c28e4662963b378fc31e1d58c72f2 Mon Sep 17 00:00:00 2001
2From: Ethan A Merritt <merritt@u.washington.edu>
3Date: Tue, 11 Mar 2025 16:31:23 -0700
4Subject: [PATCH] guard against trying to format a huge number as a time
5
6The time formatting code does not handle time_in_seconds > 1.e12
7(sometime in the year 33658).
8
9Bug 2779
10CVE: CVE-2025-31179
11Upstream-Status: Backport [https://sourceforge.net/p/gnuplot/gnuplot-main/ci/ed647df512786b3c94429dd5c864715301e03ea5/]
12Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com>
13---
14 src/mouse.c | 5 +++++
15 1 file changed, 5 insertions(+)
16
17diff --git a/src/mouse.c b/src/mouse.c
18index 1571144ce..86dee805c 100644
19--- a/src/mouse.c
20+++ b/src/mouse.c
21@@ -513,6 +513,11 @@ static char *
22 xDateTimeFormat(double x, char *b, int mode)
23 {
24 struct tm tm;
25+ if (fabs(x) > 1.e12) { /* Some time in the year 33688 */
26+ int_warn(NO_CARET, "time value out of range");
27+ *b = '\0';
28+ return b;
29+ }
30
31 switch (mode) {
32 case MOUSE_COORDINATES_XDATE:
33--
342.43.0
35
diff --git a/meta-oe/recipes-extended/gnuplot/gnuplot_5.4.3.bb b/meta-oe/recipes-extended/gnuplot/gnuplot_5.4.3.bb
index 7dfe4b6657..c05ecd2b95 100644
--- a/meta-oe/recipes-extended/gnuplot/gnuplot_5.4.3.bb
+++ b/meta-oe/recipes-extended/gnuplot/gnuplot_5.4.3.bb
@@ -19,6 +19,7 @@ SRC_URI = "${SOURCEFORGE_MIRROR}/project/${BPN}/${BPN}/${PV}/${BP}.tar.gz;name=a
19 file://CVE-2025-31176.patch \ 19 file://CVE-2025-31176.patch \
20 file://CVE-2025-31177.patch \ 20 file://CVE-2025-31177.patch \
21 file://CVE-2025-31178.patch \ 21 file://CVE-2025-31178.patch \
22 file://CVE-2025-31179.patch \
22 " 23 "
23SRC_URI:append:class-target = " \ 24SRC_URI:append:class-target = " \
24 file://0002-do-not-build-demos.patch \ 25 file://0002-do-not-build-demos.patch \