VYPR
Unrated severityNVD Advisory· Published May 20, 2025· Updated May 21, 2025

GNU PSPP pspp-convert.c calloc integer overflow

CVE-2025-5001

Description

A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been declared as problematic. This vulnerability affects the function calloc of the file pspp-convert.c. The manipulation of the argument -l leads to integer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GNU/Psppllm-fuzzy2 versions
    = 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb+ 1 more
    • (no CPE)range: = 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb
    • (no CPE)range: 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.