gnu

1,238 tracked vulnerabilities.

CVE-2020-35493 MEDIUM
binutils < 2.34 - Heap Buffer Overflow via Crafted PEF File
Jan 04, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-35448 LOW
GNU Binutils - Heap-based Buffer Over-read in BFD Library
Dec 27, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-16599 MEDIUM
GNU Binutils 2.35 - Denial of Service via Crafted File in BFD Library
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16593 MEDIUM
GNU Binutils 2.35 - Denial of Service via Crafted File in BFD Library
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16592 MEDIUM
GNU Binutils 2.34 - Use-After-Free in BFD Library via Crafted File
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16591 MEDIUM
GNU Binutils 2.35 - Denial of Service via Invalid Read in BFD process_symbol_table
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16590 MEDIUM
GNU Binutils 2.35 - Double Free in BFD Symbol Table Processing
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-29573 HIGH
GNU C Library <2.23 - Buffer Overflow
Dec 06, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-29562 MEDIUM
glibc 2.30-2.32 - Denial of Service via Iconv UCS4 Character Conversion
Dec 04, 2020
CVSS 4.8
EPSS 0.02
CVE-2020-24659 HIGH
GnuTLS <3.6.15 - NULL Pointer Dereference
Sep 04, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-24240 MEDIUM
GNU Bison < 3.7.1 - Use-After-Free in obstack.c via Null Byte Handling
Aug 25, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-14311 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Ext Filesystem Symlink Inode Size
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14310 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Malicious Font File
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14309 MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via SquashFS Symbolic Link Name
Jul 30, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-10713 HIGH
GRUB2 < 2.06 - Buffer Overflow via Crafted String
Jul 30, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-14308 MEDIUM
GRUB2 < 2.06 - Integer Overflow in Memory Allocator
Jul 29, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-15707 MEDIUM
GRUB2 < 2.04 - Integer Overflow and Heap-Based Buffer Overflow in efilinux initrd Handling
Jul 29, 2020
CVSS 5.7
EPSS 0.02
CVE-2020-15706 MEDIUM
GRUB2 < 2.04 - Use-After-Free via Function Redefinition Race Condition
Jul 29, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-15705 MEDIUM
GRUB2 < 2.04 - Secure Boot Bypass via Improper Cryptographic Signature Verification
Jul 29, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-15807 MEDIUM
GNU LibreDWG < 0.11 - NULL Pointer Dereference via Crafted Input Files
Jul 17, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-15011 MEDIUM
GNU Mailman <2.1.33 - Code Injection
Jun 24, 2020
CVSS 4.3
EPSS 0.02
CVE-2020-14150 MEDIUM
GNU Bison < 3.5.4 - Denial of Service
Jun 15, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-13777 HIGH
GnuTLS 3.6.4-3.6.13 - Use of a Broken or Risky Cryptographic Algorithm in Session Ticket Encryption
Jun 04, 2020
CVSS 7.4
EPSS 0.18
CVE-2020-12108 MEDIUM
GNU Mailman < 2.1.31 - Arbitrary Content Injection via /options/mailman
May 06, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-1752 HIGH
glibc 2.14-2.31 - Use-After-Free in Tilde Expansion
Apr 30, 2020
CVSS 7.0
EPSS 0.01