7 matches found
CVE-2018-20230
CVE-2018-20230 affects PSPP 1.2.0 due to a heap-based buffer overflow in read_bytes_internal (utilities/pspp-dump-sav.c). Impact per the entry: denial of service via application crash and possible unspecified other effects. The connected records also reference CVE-2022-39831 affecting PSPP 1.6.2 ...
CVE-2022-39832
PSPP 1.6.2 contains a heap-based buffer overflow in read_string (utilities/pspp-dump-sav.c) that can cause a denial of service (application crash) or possibly other impact. Exploitation details are not provided beyond the CVE description; CVSS data indicates local attack vector with high impact o...
CVE-2022-39831
CVE-2022-39831 affects PSPP 1.6.2. A heap-based buffer overflow occurs in function read_bytes_internal (utilities/pspp-dump-sav.c), enabling a denial of service (application crash) and potentially unspecified other impact. The issue is explicitly noted as different from CVE-2018-20230. The provid...
CVE-2017-12960
CVE-2017-12960 concerns the GNU PSPP project. The vulnerability is a reachable assertion abort in the function dict_rename_var() located in data/dictionary.c of the libpspp library, affecting PSPP prior to version 1.0.1 and potentially enabling remote denial of service. The connected sources corr...
CVE-2017-12958
CVE-2017-12958 affects GNU PSPP’s libpspp, specifically the output_hex() function in data/data-out.c. The vulnerability arises from an illegal address access in this function, and is described as leading to remote denial of service when exploited. The CVE is noted as affecting PSPP versions befor...
CVE-2017-12959
CVE-2017-12959 affects the GNU PSPP project’s C library libpspp. Multiple connected sources confirm a vulnerability in the function dict_add_mrset() in data/dictionary.c (GNU PSPP) present before version 1.0.1 , allowing a remote attacker to trigger a denial of service. The issue is described acr...
CVE-2017-12961
CVE-2017-12961 affects GNU PSPP (libpspp), specifically the function parse_attributes() in data/sys-file-reader.c, with vulnerable versions prior to 1.0.1. The issue is an assertion abort that can cause a remote denial of service. Public details consistently describe the root cause and impact as ...