Published: 05/09/2022 Updated: 07/11/2023

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 0

An issue exists in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows malicious users to cause a denial of service (application crash) or possibly have unspecified other impact. This issue is different from CVE-2018-20230.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu pspp 1.6.2
fedoraproject fedora 36
fedoraproject fedora 37

Debian Bug report logs - #1019597 pspp: CVE-2022-39831 Package: src:pspp; Maintainer for src:pspp is Friedrich Beckmann <friedrichbeckmann@gmxde>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Mon, 12 Sep 2022 20:39:06 UTC Severity: important Tags: security, upstream Found in version pspp/162-1 Forwa ...

CWE-787 https://savannah.gnu.org/bugs/?62977 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VQKWIVW5WJ5ZQNNQFRKTRKD7J3LRLUYW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OECANCPD4WSSBJLSC3EE472M5DXRTIS4/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019597 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-39831

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect