gnu

1,205 tracked vulnerabilities.

CVE-2020-29562 MEDIUM
glibc 2.30-2.32 - Denial of Service via Iconv UCS4 Character Conversion
Dec 04, 2020
CVSS 4.8
EPSS 0.00
CVE-2020-24659 HIGH
GnuTLS <3.6.15 - NULL Pointer Dereference
Sep 04, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-24240 MEDIUM
GNU Bison < 3.7.1 - Use-After-Free in obstack.c via Null Byte Handling
Aug 25, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-14311 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Ext Filesystem Symlink Inode Size
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14310 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Malicious Font File
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14309 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via SquashFS Symbolic Link Name
Jul 30, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-10713 HIGH
GRUB2 < 2.06 - Buffer Overflow via Crafted String
Jul 30, 2020
CVSS 8.2
EPSS 0.00
CVE-2020-14308 MEDIUM
GRUB2 < 2.06 - Integer Overflow in Memory Allocator
Jul 29, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-15707 MEDIUM
GRUB2 < 2.04 - Integer Overflow and Heap-Based Buffer Overflow in efilinux initrd Handling
Jul 29, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-15706 MEDIUM
GRUB2 < 2.04 - Use-After-Free via Function Redefinition Race Condition
Jul 29, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-15705 MEDIUM
GRUB2 < 2.04 - Secure Boot Bypass via Improper Cryptographic Signature Verification
Jul 29, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-15807 MEDIUM
GNU LibreDWG < 0.11 - NULL Pointer Dereference via Crafted Input Files
Jul 17, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15011 MEDIUM
GNU Mailman <2.1.33 - Code Injection
Jun 24, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-14150 MEDIUM
GNU Bison < 3.5.4 - Denial of Service
Jun 15, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-13777 HIGH
GnuTLS 3.6.4-3.6.13 - Use of a Broken or Risky Cryptographic Algorithm in Session Ticket Encryption
Jun 04, 2020
CVSS 7.4
EPSS 0.02
CVE-2020-12108 MEDIUM
GNU Mailman < 2.1.31 - Arbitrary Content Injection via /options/mailman
May 06, 2020
CVSS 6.5
EPSS 0.08
CVE-2020-1752 HIGH
glibc 2.14-2.31 - Use-After-Free in Tilde Expansion
Apr 30, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-12137 MEDIUM
GNU Mailman 2.0-2.1.29 - Cross-Site Scripting via Scrubbed MIME Part
Apr 24, 2020
CVSS 6.1
EPSS 0.05
CVE-2020-1751 MEDIUM
glibc < 2.31 - Out-of-bounds Write in Backtrace Function on PowerPC
Apr 17, 2020
CVSS 5.1
EPSS 0.00
CVE-2020-11501 HIGH
GnuTLS <3.6.13 - Cryptographic Error
Apr 03, 2020
CVSS 7.4
EPSS 0.11
CVE-2020-6096 HIGH
GNU glibc 2.30.9000 - Memory Corruption
Apr 01, 2020
CVSS 8.1
EPSS 0.04
CVE-2020-10029 MEDIUM
glibc < 2.32 - Out-of-bounds Write in Long Double Range Reduction
Mar 04, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-9366 CRITICAL
GNU Screen < 4.8.0 - Out-of-bounds Write via OSC 49 Escape Sequence
Feb 24, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-6615 MEDIUM
GNU LibreDWG 0.9.3.2564 - NULL Pointer Dereference in dynapi.c
Jan 08, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-6614 HIGH
GNU LibreDWG 0.9.3.2564 - Heap-Based Buffer Over-Read in decode.c
Jan 08, 2020
CVSS 8.1
EPSS 0.01
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 gnump3d 7
Quick Filters
Critical CVEs With Exploits In CISA KEV