Malicious code in haven-5ynlj-z2reg-raven-project (npm)

The package haven-5ynlj-z2reg-raven-project was found to contain malicious code...

PT-2018-10524 · R Core Team +1 · Haven R Package +1

Name of the Vulnerable Software and Affected Versions: ReadStat version 0.1.1 haven R package affected versions not specified Description: The issue involves an infinite loop condition, a memory leak associated with an iconv open call, and a heap-based buffer over-read via an unterminated string...

PT-2018-10523 · R +1 · Haven R Package +1

Name of the Vulnerable Software and Affected Versions: ReadStat version 0.1.1 haven R package affected versions not specified Description: The issue is related to multiple flaws in the ReadStat library, including an infinite loop condition, a memory leak associated with an iconv open call, and a...

PT-2018-17095 · R +1 · Haven R Package +2

Name of the Vulnerable Software and Affected Versions: haven R package affected versions not specified libreadstat.a in WizardMac ReadStat version 0.1.1 Description: The issue is related to multiple problems in the underlying ReadStat library of the haven R package, including an infinite loop...