An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1660318 | Issue Tracking Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:22:04
Updated: 2022-10-03T16:22:04
Reserved: 2022-10-03T00:00:00
Link: CVE-2018-20230
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-12-19T11:29:02.263
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-20230
JSON object: View
Redhat Information
No data.
CWE