{"id":"CVE-2020-35357","details":"A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL (GNU Scientific Library), versions 2.5 and 2.6. Processing a maliciously crafted input data for gsl_stats_quantile_from_sorted_data of the library may lead to unexpected application termination or arbitrary code execution.","modified":"2026-03-20T04:05:47.786362Z","published":"2023-08-22T19:16:20.167Z","related":["SUSE-SU-2023:3527-1","SUSE-SU-2023:3858-1","SUSE-SU-2023:4051-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/12/msg00006.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00023.html"},{"type":"FIX","url":"https://git.savannah.gnu.org/cgit/gsl.git/commit/?id=989a193268b963aa1047814f7f1402084fb7d859"},{"type":"FIX","url":"https://savannah.gnu.org/bugs/?59624"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://cgit.git.savannah.gnu.org/cgit/gsl.git","events":[{"introduced":"0"},{"fixed":"989a193268b963aa1047814f7f1402084fb7d859"}]},{"type":"GIT","repo":"https://git.savannah.gnu.org/git/gsl.git/","events":[{"introduced":"0"},{"last_affected":"2bec59ca096ea16311344f95deee6f617aae53b7"},{"introduced":"0"},{"last_affected":"8f0165f5cb2ae02e386cd33ff10e47ffb46ea7da"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.5"},{"introduced":"0"},{"last_affected":"2.6"}]}}],"versions":["ROSALIA_BEFORE_ADD_GAUSS_AND_POISSON","ROSALIA_RELEASE_0_3b","after_libtool","before-removing-naturals","before_libtool","r0_2","release-0-3c","release-0-3d","release-0-3e","release-0-3f","release-0-4","release-0-4-1","release-0-5","release-0-6","release-0-7","release-0-8","release-0-9","release-0-9-1","release-0-9-2","release-0-9-3","release-0-9-4","release-1-0","release-1-15","release-1-16","release-2-0","release-2-1","release-2-2","release-2-2-1","release-2-3","release-2-4","release-2-5"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-35357.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}