CVE-2025-47814

Medium CVSS: 4.5

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from spv_read_xml_member) in zip-reader.c.

Vendor

Gnu

Product

Pspp

CWE

CWE-122

Yayın Tarihi

2025-05-10 22:15:20

Güncelleme

2025-06-12 16:16:54

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-122 Pspp MEDIUM Gnu 2025

Referanslar

https://savannah.gnu.org/bugs/?67074 https://savannah.gnu.org/bugs/?67074

Benzer Kayıtlar

High

CVE-2026-4046

The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when convertin…

Medium

CVE-2026-4647

A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files…

High

CVE-2026-4437

Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the…

Medium

CVE-2026-4438

Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the…

Medium

CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in t…

Medium

CVE-2026-3442

A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read,…