Pspp@* Security Vulnerabilities and Issues — Pspp@* CVE List

Lucene search

GnuPspp*

5 matches found

CVE•added 2025/05/10 10:15 p.m.•50 views

CVE-2025-47814

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from spv_read_xml_member) in zip-reader.c.

9.8CVSS7.3AI score0.00057EPSS

CVE•added 2025/05/03 3:15 a.m.•47 views

CVE-2025-47229

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service (var_set_leave_quiet assertion failure and application exit) via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code.

5.5CVSS7.2AI score0.00018EPSS

CVE•added 2025/05/10 10:15 p.m.•47 views

CVE-2025-47815

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from zip_member_read_all) in zip-reader.c.

9.8CVSS5AI score0.00057EPSS

CVE•added 2025/05/10 10:15 p.m.•47 views

CVE-2025-47816

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

9.1CVSS6.8AI score0.00057EPSS

CVE•added 2025/05/16 9:15 p.m.•22 views

CVE-2025-48188

libpspp-core.a in GNU PSPP through 2.0.1 has an incorrect call from fill_buffer (in data/encrypted-file.c) to the Gnulib rijndaelDecrypt function, leading to a heap-based buffer over-read.

5.5CVSS4.1AI score0.00017EPSS