EUVD-2018-12796

Malware in sbrugna...

EUVD-2025-14246

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-20230

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function readbytesinternal in utilities/pspp-dump-sav.c, which allows...

Linux Distros Unpatched Vulnerability : CVE-2025-5899

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as critical was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected by this vulnerability is the function...

CVE-2025-5899 GNU PSPP pspp-convert.c parse_variables_option free of memory not on the heap

A vulnerability classified as critical was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected by this vulnerability is the function parsevariablesoption of the file utilities/pspp-convert.c. The manipulation leads to free of memory not on the heap. An attack has to be approached...

GNU PSPP Input Validation Error Vulnerability

GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. An input validation error vulnerability exists in GNU PSPP that stems from improper parameter handling, and no details of the vulnerability are provided at this time...

CVE-2018-20230

An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function readbytesinternal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service application crash or possibly have unspecified other impact...

PT-2025-22311 · Gnu +1 · Gnu Pspp +1

Name of the Vulnerable Software and Affected Versions: GNU PSPP version 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb Description: A vulnerability was found in GNU PSPP, affecting the calloc function in the pspp-convert.c file. The manipulation of the argument -l leads to integer overflow. Local acces...

CVE-2025-47814

CVE-2025-47814 describes a heap-based buffer overflow in PSPP’s zip reader. The vulnerable component is the PSPP core library, specifically the file zip-reader.c, within the function inflate_read (called indirectly from spv_read_xml_member). This issue affects the library artifact libpspp-core.a ...

CVE-2025-47816

CVE-2025-47816 affects GNU PSPP (libpspp-core.a) through version 2.0.1. The vulnerability is an out-of-bounds read in spvxml_parse_attributes (spvxml-helpers.c), related to extra content at the end of a document. All provided connected sources corroborate this issue. Practical impact is an out-of...

DEBIAN-CVE-2022-39831

An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function readbytesinternal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service application crash or possibly have unspecified other impact. This issue is different from CVE-2018-20230...

PT-2022-25022 · Pspp +1 · Pspp +1

Name of the Vulnerable Software and Affected Versions: PSPP version 1.6.2 Description: A heap-based buffer overflow issue exists in the read bytes internal function located in utilities/pspp-dump-sav.c. This issue can be exploited by attackers to cause a denial of service, resulting in an...

GNU PSPP 缓冲区错误漏洞

GNU PSPP is an application for data sampling, statistics and analysis. A security vulnerability exists in GNU PSPP version 1.6.2, which stems from a heap-based buffer overflow in the function readbytesinternal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service...