Primary

Context

GNU PSPP Heap-Based Buffer Overflow Vulnerability in ZIP Reader Functionality

Vulnerability

A heap-based buffer overflow vulnerability has been identified in GNU PSPP versions through 2.0.1. The issue arises in the ZIP reader component, specifically within the 'inflate_read' function, which is called indirectly from 'zip_member_read_all' in 'zip-reader.c'. This vulnerability allows attackers to manipulate the ZIP file handling, potentially leading to memory corruption.

Impact

Exploitation of this vulnerability causes a heap-based buffer overflow, which can lead to memory corruption and possibly allow for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by compiling GNU PSPP with AddressSanitizer enabled, using Clang as the compiler. After installing the vulnerable version of PSPP, the issue can be triggered by processing a specially crafted SPSS file that exploits the buffer overflow in the ZIP reader.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU PSPP Heap-Based Buffer Overflow Vulnerability in ZIP Reader Functionality

Vulnerability

Impact

Reproduction

Affected Products

GNU PSPP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating