Pspp
Sign in to watchby GNU
CVEs (6)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-12961 | Hig | 0.49 | 7.5 | 0.00 | Aug 18, 2017 | There is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service. | |
| CVE-2017-12960 | Hig | 0.49 | 7.5 | 0.00 | Aug 18, 2017 | There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service. | |
| CVE-2017-12959 | Hig | 0.49 | 7.5 | 0.00 | Aug 18, 2017 | There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack. | |
| CVE-2017-12958 | Hig | 0.49 | 7.5 | 0.00 | Aug 18, 2017 | There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service. | |
| CVE-2017-10792 | Med | 0.42 | 6.5 | 0.00 | Jul 2, 2017 | There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack. | |
| CVE-2017-10791 | Med | 0.42 | 6.5 | 0.00 | Jul 2, 2017 | There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack. |