2 matches found
CVE-2019-6690
CVE-2019-6690 affects python-gnupg 0.4.3. A context-dependent flaw lets an attacker, if they control the GnuPG passphrase and the ciphertext is trusted, cause decryption of ciphertext other than intended (CWE-20: Improper Input Validation). Impact described in sources includes manipulation of enc...
CVE-2019-9211
The CVE-2019-9211 issue affects PSPP 1.2.0, where a reachable assertion abort in write_long_string_missing_values() within data/sys-file-writer.c in libdata.a can cause a denial of service. Connected sources confirm this exact component and function are implicated, and multiple advisories (openSU...