gnu

1,205 tracked vulnerabilities.

CVE-2026-48829 HIGH
Gnu Sasl < 2.2.3 - NULL Pointer Dereference
May 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-42010 HIGH
Gnutls: gnutls: authentication bypass via nul character in username
May 07, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-3833 MEDIUM
Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison
Apr 30, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-3832 LOW
Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response
Apr 30, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-33845 HIGH
Gnutls: gnutls: denial of service via dtls zero-length fragment
Apr 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-1858 MEDIUM
wget2 Improper Certificate Validation
Apr 29, 2026
CVSS 4.8
EPSS 0.00
CVE-2026-6238 MEDIUM
Buffer overread in ns_printrrf with corrupted RDATA field
Apr 28, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-5435 HIGH
Potential buffer overflow in ns_sprintrrf TSIG handling path
Apr 28, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-6861 MEDIUM
Emacs: emacs: memory corruption vulnerability when processing svg css
Apr 22, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-6846 HIGH
Binutils: binutils: arbitrary code execution via malformed xcoff object file processing
Apr 22, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6845 MEDIUM
Binutils: binutils: denial of service via crafted elf file
Apr 22, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-6844 MEDIUM
Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-6843 MEDIUM
Nano: nano: format string vulnerability leads to denial of service
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-5928 HIGH
Static buffer overflow in deprecated nis_local_principal
Apr 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-5450 CRITICAL
glibc 2.7-2.43 - Heap-based Buffer Overflow via scanf %mc with Explicit Width
Apr 20, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-5958 LOW
GNU sed --follow-symlinks - TOCTOU Arbitrary File Overwrite
Apr 20, 2026
EPSS 0.00
CVE-2026-1584 HIGH
Gnutls: gnutls: remote denial of service via crafted clienthello with invalid psk binder
Apr 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-5704 MEDIUM
Tar: tar: hidden file injection via crafted archives
Apr 06, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-4046 HIGH
iconv crash due to assertion failure with untrusted input
Mar 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4647 MEDIUM
Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library
Mar 23, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-4438 MEDIUM
gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames
Mar 20, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-4437 HIGH
gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response
Mar 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-3442 MEDIUM
Red Hat Enterprise Linux 10 - Buffer Overflow
Mar 16, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-3441 MEDIUM
Binutils: gnu binutils: information disclosure via specially crafted xcoff object file
Mar 16, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-32772 LOW
GNU inetutils <=2.7 - Info Disclosure
Mar 16, 2026
CVSS 3.4
EPSS 0.00
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 gnump3d 7
Quick Filters
Critical CVEs With Exploits In CISA KEV