Amazon Linux 2023 Security Advisory: ALAS2023-2023-202
Advisory Released Date: 2023-06-07
Advisory Updated Date: 2023-06-07
Severity:
Low
Issue Overview:
A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function in graph3d.c, which could cause a Arithmetic exception and application crash. (CVE-2021-44917)
Affected Packages:
gnuplot
Issue Correction:
Run dnf update gnuplot --releasever 2023.0.20230607 to update your system.
New Packages:
aarch64:
gnuplot-minimal-debuginfo-5.4.3-3.amzn2023.0.3.aarch64
gnuplot-common-debuginfo-5.4.3-3.amzn2023.0.3.aarch64
gnuplot-debuginfo-5.4.3-3.amzn2023.0.3.aarch64
gnuplot-common-5.4.3-3.amzn2023.0.3.aarch64
gnuplot-minimal-5.4.3-3.amzn2023.0.3.aarch64
gnuplot-debugsource-5.4.3-3.amzn2023.0.3.aarch64
noarch:
gnuplot-latex-5.4.3-3.amzn2023.0.3.noarch
gnuplot-doc-5.4.3-3.amzn2023.0.3.noarch
src:
gnuplot-5.4.3-3.amzn2023.0.3.src
x86_64:
gnuplot-common-debuginfo-5.4.3-3.amzn2023.0.3.x86_64
gnuplot-debugsource-5.4.3-3.amzn2023.0.3.x86_64
gnuplot-minimal-debuginfo-5.4.3-3.amzn2023.0.3.x86_64
gnuplot-debuginfo-5.4.3-3.amzn2023.0.3.x86_64
gnuplot-common-5.4.3-3.amzn2023.0.3.x86_64
gnuplot-minimal-5.4.3-3.amzn2023.0.3.x86_64