Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pspp vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-20230
An issue exists in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows malicious users to cause a denial of service (application crash) or possibly have unspecified other impact.
Gnu Pspp 1.2.0
7.5
CVSSv3
CVE-2017-12958
There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP prior to 1.0.1 that will lead to remote denial of service.
Gnu Pspp 0.11.0
7.5
CVSSv3
CVE-2017-12959
There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP prior to 1.0.1 that will lead to a remote denial of service attack.
Gnu Pspp 0.11.0
7.5
CVSSv3
CVE-2017-12960
There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP prior to 1.0.1 that will lead to remote denial of service.
Gnu Pspp 0.11.0
7.5
CVSSv3
CVE-2017-12961
There is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP prior to 1.0.1 that will lead to remote denial of service.
Gnu Pspp 0.11.0
6.5
CVSSv3
CVE-2017-10791
There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP prior to 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of servic...
Gnu Pspp 0.10.5-pre2
6.5
CVSSv3
CVE-2017-10792
There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP prior to 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial...
Gnu Pspp 0.10.5-pre2
6.5
CVSSv3
CVE-2019-9211
There is a reachable assertion abort in the function write_long_string_missing_values() in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service.
Gnu Pspp 1.2.0
Fedoraproject Fedora 29
Suse Backports -
7.8
CVSSv3
CVE-2022-39831
An issue exists in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows malicious users to cause a denial of service (application crash) or possibly have unspecified other impact. This issue is different ...
Gnu Pspp 1.6.2
Fedoraproject Fedora 36
Fedoraproject Fedora 37
7.8
CVSSv3
CVE-2022-39832
An issue exists in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_string in utilities/pspp-dump-sav.c, which allows malicious users to cause a denial of service (application crash) or possibly have unspecified other impact.
Gnu Pspp 1.6.2
Fedoraproject Fedora 36
Fedoraproject Fedora 37
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started