CVE-2025-47816

Опубликовано: 10 мая 2025

Источник: debian

EPSS Низкий

Описание

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
pspp	unfixed			package

Примечания

Crash in CLI tool, no security impact
https://savannah.gnu.org/bugs/?67073

EPSS

Процентиль: 12%

0.0004

Низкий

Связанные уязвимости

CVE-2025-47816

CVSS3: 2.9

ubuntu

около 1 месяца назад

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

CVE-2025-47816

CVSS3: 2.9

nvd

около 1 месяца назад

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

GHSA-52xv-3j2w-p329

CVSS3: 2.9

github

около 1 месяца назад

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

EPSS

Процентиль: 12%

0.0004

Низкий