gnu

1,238 tracked vulnerabilities.

CVE-2021-39525 HIGH
libredwg < 0.10.1.3751 - Heap-Based Buffer Overflow in bit_read_fixed()
Sep 20, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-39523 MEDIUM
libredwg < 0.10.1.3751 - Denial of Service via NULL Pointer Dereference in check_POLYLINE_handles
Sep 20, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-39522 HIGH
libredwg < 0.10.1.3751 - Heap-Based Buffer Overflow in bit_wcs2len()
Sep 20, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-39521 MEDIUM
libredwg < 0.10.1.3751 - Denial of Service via NULL Pointer Dereference in bit_read_BB
Sep 20, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-40491 MEDIUM
GNU Inetutils <2.2 - Info Disclosure
Sep 03, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-38604 HIGH
GNU C Library < 2.34 - Null Pointer Dereference
Aug 12, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-38185 HIGH
GNU cpio < 2.13 - Remote Code Execution via Pattern File Integer Overflow
Aug 08, 2021
CVSS 7.8
EPSS 0.04
CVE-2021-35942 CRITICAL
GNU C Library <2.33 - Memory Corruption
Jul 22, 2021
CVSS 9.1
EPSS 0.03
CVE-2021-36080 HIGH
GNU LibreDWG <0.12.3.4191 - Use After Free
Jul 01, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3530 HIGH
GNU Binutils <2.36 - Memory Corruption
Jun 02, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3549 HIGH
GNU binutils objdump <2.36 - Buffer Overflow
May 26, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-33574 CRITICAL
GNU C Library <2.32-2.33 - Use After Free
May 25, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-20294 HIGH
binutils 2.35-2.35.1 - Stack Buffer Overflow via Crafted File in readelf
Apr 29, 2021
CVSS 7.8
EPSS 0.03
CVE-2021-31879 MEDIUM
GNU Wget < 1.21.1 - Authorization Header Exposure via Redirect
Apr 29, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-27851 MEDIUM
GNU Guix 0.11.0-1.2.0 - Local Privilege Escalation via Hardlink Attack on Build Directory
Apr 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-30184 HIGH
GNU Chess 6.2.7 - Remote Code Execution via Crafted PGN Data
Apr 07, 2021
CVSS 7.8
EPSS 0.02
CVE-2021-20284 MEDIUM
GNU Binutils 2.35.1 - Heap-Based Buffer Overflow in _bfd_elf_slurp_secondary_reloc_section
Mar 26, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-20197 MEDIUM
GNU binutils < 2.35 - Race Condition in ar, objcopy, strip, ranlib
Mar 26, 2021
CVSS 6.3
EPSS 0.00
CVE-2021-20193 LOW
GNU tar < 1.33 - Out-of-bounds Read via Crafted Input File
Mar 26, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-3466 CRITICAL
libmicrohttpd 0.9.70 - Buffer Overflow in post_process_urlencoded
Mar 25, 2021
CVSS 9.8
EPSS 0.09
CVE-2021-28968 MEDIUM
PunBB < 1.4.6 - Authenticated Stored Cross-Site Scripting via Email BBCode Tag
Mar 22, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-3418 MEDIUM
GRUB2 < 2.06 - Secure Boot Bypass via Shim Lock Mechanism
Mar 15, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-20232 CRITICAL
GnuTLS 3.6.3-3.7.0 - Use-After-Free in client_send_params
Mar 12, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-20231 CRITICAL
GnuTLS 3.6.3-3.7.0 - Use-After-Free in Key Share Extension Handling
Mar 12, 2021
CVSS 9.8
EPSS 0.04
CVE-2021-20233 HIGH
GRUB2 < 2.06 - Out-of-bounds Write via Menu Rendering
Mar 03, 2021
CVSS 8.2
EPSS 0.01