CVE-2025-5898 | GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb utilities/pspp-convert.c parse_variables_option out-of-bounds write (Bug 67071)

Inserito da Angelo Barbosa | Giu 9, 2025 | CVE

A vulnerability classified as critical has been found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected is the function parse_variables_option of the file utilities/pspp-convert.c. The manipulation leads to out-of-bounds write.

This vulnerability is traded as CVE-2025-5898. The attack needs to be approached locally. Furthermore, there is an exploit available.

CVE-2025-5898 | GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb utilities/pspp-convert.c parse_variables_option out-of-bounds write (Bug 67071)

Post correlati

CVE-2024-33865 | linqi up to 1.4.0.0 on Windows /api/Cdn/GetFile information disclosure

CVE-2024-1652 | frenify Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxClearCategory authorization

CVE-2024-34707 | Nautobot up to 1.6.21/2.2.3 /admin/constance/config/ BANNER_TOP/BANNER_BOTTOM/BANNER_LOGIN cross site scripting

CVE-2021-47472 | Linux Kernel up to 5.14.15 mdiobus lib/kasprintf.c __mdiobus_register memory leak