Vulnerabilities > GNU > Pspp > 0.11.0

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2017-12961 Improper Input Validation vulnerability in GNU Pspp 0.11.0
There is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
network
low complexity
gnu CWE-20
7.5
7.5
2017-08-18 CVE-2017-12960 Reachable Assertion vulnerability in GNU Pspp 0.11.0
There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
network
low complexity
gnu CWE-617
7.5
7.5
2017-08-18 CVE-2017-12959 Reachable Assertion vulnerability in GNU Pspp 0.11.0
There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack.
network
low complexity
gnu CWE-617
7.5
7.5
2017-08-18 CVE-2017-12958 Out-of-bounds Read vulnerability in GNU Pspp 0.11.0
There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
network
low complexity
gnu CWE-125
7.5
7.5