godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-04 06:10:16 +03:00
Code Issues Packages Projects Releases Wiki Activity

package/gnuplot: security bump to version 5.4.1

Browse Source 
- Fix CVE-2020-25412: com_line() in command.c in gnuplot 5.4 leads to an
  out-of-bounds-write from strncpy() that may lead to arbitrary code
  execution.
- Drop second patch (already in version)
- Update indentation in hash file (two spaces)

http://gnuplot.info/ReleaseNotes_5_4_1.html

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This commit is contained in:
Fabrice Fontaine
2020-12-02 07:32:43 +01:00
committed by Peter Korsgaard
parent 1e1d1278c7
commit bd5b91fb42
3 changed files with 5 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
package/gnuplot/gnuplot.mk
View File

@@ -4,7 +4,7 @@
#
################################################################################
GNUPLOT_VERSION = 5.4.0
GNUPLOT_VERSION = 5.4.1
GNUPLOT_SITE = http://downloads.sourceforge.net/project/gnuplot/gnuplot/$(GNUPLOT_VERSION)
GNUPLOT_LICENSE = gnuplot license (open source)
GNUPLOT_LICENSE_FILES = Copyright