Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 10 results


CVE-2022-39832

Medium priority
Needs evaluation

An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_string in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have...

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Needs evaluation Needs evaluation Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2022-39831

Medium priority
Needs evaluation

An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly...

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Needs evaluation Needs evaluation Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2019-9211

Low priority
Vulnerable

There is a reachable assertion abort in the function write_long_string_missing_values() in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service.

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Vulnerable Vulnerable
Show less packages

CVE-2018-20230

Medium priority
Vulnerable

An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly...

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Vulnerable Vulnerable
Show less packages

CVE-2017-12961

Low priority
Vulnerable

There is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Not affected Vulnerable
Show less packages

CVE-2017-12960

Low priority
Vulnerable

There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Not affected Vulnerable
Show less packages

CVE-2017-12959

Low priority
Ignored

There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack.

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected
Show less packages

CVE-2017-12958

Low priority
Vulnerable

There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Not affected Vulnerable
Show less packages

CVE-2017-10792

Medium priority
Vulnerable

There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV...

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Not affected Vulnerable
Show less packages

CVE-2017-10791

Medium priority
Vulnerable

There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A...

1 affected packages

pspp

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pspp Not affected Not affected Not in release Not affected Vulnerable
Show less packages