gnu
1,238 tracked vulnerabilities.
CVE-2020-35493
MEDIUM
binutils < 2.34 - Heap Buffer Overflow via Crafted PEF File
Jan 04, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-35448
LOW
GNU Binutils - Heap-based Buffer Over-read in BFD Library
Dec 27, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-16599
MEDIUM
GNU Binutils 2.35 - Denial of Service via Crafted File in BFD Library
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16593
MEDIUM
GNU Binutils 2.35 - Denial of Service via Crafted File in BFD Library
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16592
MEDIUM
GNU Binutils 2.34 - Use-After-Free in BFD Library via Crafted File
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16591
MEDIUM
GNU Binutils 2.35 - Denial of Service via Invalid Read in BFD process_symbol_table
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-16590
MEDIUM
GNU Binutils 2.35 - Double Free in BFD Symbol Table Processing
Dec 09, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-29573
HIGH
GNU C Library <2.23 - Buffer Overflow
Dec 06, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-29562
MEDIUM
glibc 2.30-2.32 - Denial of Service via Iconv UCS4 Character Conversion
Dec 04, 2020
CVSS 4.8
EPSS 0.02
CVE-2020-24659
HIGH
GnuTLS <3.6.15 - NULL Pointer Dereference
Sep 04, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-24240
MEDIUM
GNU Bison < 3.7.1 - Use-After-Free in obstack.c via Null Byte Handling
Aug 25, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-14311
MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Ext Filesystem Symlink Inode Size
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14310
MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via Malicious Font File
Jul 31, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-14309
MEDIUM
GRUB2 < 2.06 - Heap-Based Buffer Overflow via SquashFS Symbolic Link Name
Jul 30, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-10713
HIGH
GRUB2 < 2.06 - Buffer Overflow via Crafted String
Jul 30, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-14308
MEDIUM
GRUB2 < 2.06 - Integer Overflow in Memory Allocator
Jul 29, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-15707
MEDIUM
GRUB2 < 2.04 - Integer Overflow and Heap-Based Buffer Overflow in efilinux initrd Handling
Jul 29, 2020
CVSS 5.7
EPSS 0.02
CVE-2020-15706
MEDIUM
GRUB2 < 2.04 - Use-After-Free via Function Redefinition Race Condition
Jul 29, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-15705
MEDIUM
GRUB2 < 2.04 - Secure Boot Bypass via Improper Cryptographic Signature Verification
Jul 29, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-15807
MEDIUM
GNU LibreDWG < 0.11 - NULL Pointer Dereference via Crafted Input Files
Jul 17, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-15011
MEDIUM
GNU Mailman <2.1.33 - Code Injection
Jun 24, 2020
CVSS 4.3
EPSS 0.02
CVE-2020-14150
MEDIUM
GNU Bison < 3.5.4 - Denial of Service
Jun 15, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-13777
HIGH
GnuTLS 3.6.4-3.6.13 - Use of a Broken or Risky Cryptographic Algorithm in Session Ticket Encryption
Jun 04, 2020
CVSS 7.4
EPSS 0.18
CVE-2020-12108
MEDIUM
GNU Mailman < 2.1.31 - Arbitrary Content Injection via /options/mailman
May 06, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-1752
HIGH
glibc 2.14-2.31 - Use-After-Free in Tilde Expansion
Apr 30, 2020
CVSS 7.0
EPSS 0.01
Products
binutils 276
glibc 163
libredwg 89
gnutls 74
grub2 53
mailman 47
emacs 35
ncurses 29
wget 24
bash 18
tar 18
pspp 16
Binutils 15
patch 15
gcc 14
recutils 14
gzip 13
libextractor 13
libtasn1 13
cpio 12
LibreDWG 10
coreutils 10
groff 10
libiberty 10
privacy_guard 10
gdb 9
screen 9
adns 8
inetutils 8
mailutils 8
Quick Filters