Search CVE reports
1 – 10 of 10 results
CVE-2022-39832
Medium priorityAn issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_string in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have...
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-39831
Medium priorityAn issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly...
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2019-9211
Low priorityThere is a reachable assertion abort in the function write_long_string_missing_values() in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service.
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Vulnerable | Vulnerable |
CVE-2018-20230
Medium priorityAn issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly...
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Vulnerable | Vulnerable |
CVE-2017-12961
Low priorityThere is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Not affected | Vulnerable |
CVE-2017-12960
Low priorityThere is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Not affected | Vulnerable |
CVE-2017-12959
Low priorityThere is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack.
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | — | — | — | — | Not affected |
CVE-2017-12958
Low priorityThere is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Not affected | Vulnerable |
CVE-2017-10792
Medium priorityThere is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV...
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Not affected | Vulnerable |
CVE-2017-10791
Medium priorityThere is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A...
1 affected packages
pspp
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pspp | Not affected | Not affected | Not in release | Not affected | Vulnerable |