Linux /usr/bin/gnuplot overflow | Linux Today

Linux /usr/bin/gnuplot overflow

Written By
Web Webster
Web Webster
Mar 5, 1999

xnec@INFERNO.TUSCULUM.EDU posted to BUGTRAQ:

greetings,

INFO:

There is a local root comprimise in /usr/bin/gnuplot version
Linux version 3.5 (pre 3.6) patchlevel beta 336. gnuplot is shipped
to install suidroot on SuSE 5.2 and maybe others. The exploit
starts as a simple $HOME buffer overflow, but much like zgv holes
in the past, it drops root privs before the overflow occurs.
However, as Nergal describes at http://www.geek-girl.com/bugtraq/1998_4/0148.html,
svgalib needs write access to /dev/mem, and we can therefore regain
root privs by overwriting our uid.

the offending code appears in plot.c where we see:

char home[80];

char *tmp_home=getenv(HOME);

strcpy(home,tmp_home);

Exploit and patch removed. A sure-fire way to correct this
is to remove the setuid bit on the file (chmod 0755
/usr/bin/gnuplot). -lt ed

Web Webster

Web Webster

Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.