gnu

1,210 tracked vulnerabilities.

CVE-2018-6551 CRITICAL
glibc 2.24-2.26 - Integer Overflow in malloc
Feb 02, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-6543 HIGH
GNU Binutils 2.30 - Integer Overflow in load_specific_debug_section
Feb 02, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-6485 CRITICAL
glibc < 2.26 - Integer Overflow in posix_memalign and memalign Functions
Feb 01, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-1000001 HIGH
glibc < 2.26 - Buffer Underflow and Potential Code Execution via realpath()
Jan 31, 2018
CVSS 7.8
EPSS 0.41
CVE-2018-6323 HIGH
GNU Binutils - Integer Overflow in elf_object_p
Jan 26, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-5950 MEDIUM
Mailman < 2.1.26 - Cross-Site Scripting via User-Options URL
Jan 23, 2018
CVSS 6.1
EPSS 0.02
CVE-2018-6003 HIGH
GNU Libtasn1 < 4.13 - Denial of Service via Unlimited Recursion in BER Decoder
Jan 22, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-9104 CRITICAL
adns < 1.5.2 - Denial of Service via Compression Pointer Loop
Jun 18, 2020
CVSS 9.8
EPSS 0.01
CVE-2017-9103 CRITICAL
adns < 1.5.2 - Memory Corruption via Uninitialized Stack Value in pap_mailbox822
Jun 18, 2020
CVSS 9.8
EPSS 0.01
CVE-2017-9109 CRITICAL
adns < 1.5.2 - Heap-Based Buffer Overflow via Interleaved CNAME Answers
Jun 18, 2020
CVSS 9.8
EPSS 0.01
CVE-2017-9108 HIGH
adns < 1.5.2 - Buffer Overflow via Missing Final Newline Handling
Jun 18, 2020
CVSS 7.5
EPSS 0.01
CVE-2017-9107 HIGH
adns < 1.5.2 - Denial of Service via Backslash Domain Parsing
Jun 18, 2020
CVSS 7.5
EPSS 0.01
CVE-2017-9106 HIGH
adns < 1.5.2 - Buffer Overflow via Integer Conversion in adns_rr_info
Jun 18, 2020
CVSS 7.5
EPSS 0.01
CVE-2017-9105 HIGH
adns <1.5.2 - Remote Code Execution
Jun 18, 2020
CVSS 8.8
EPSS 0.03
CVE-2017-18269 CRITICAL
glibc 2.21-2.27 - Memory Corruption via SSE2-optimized memmove Overlap Check
May 18, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-18201 CRITICAL
GNU libcdio < 2.0.0 - Double Free in get_cdtext_generic()
Feb 26, 2018
CVSS 9.8
EPSS 0.00
CVE-2017-18199 MEDIUM
GNU libcdio < 1.0.0 - Denial of Service via Crafted ISO File
Feb 24, 2018
CVSS 6.5
EPSS 0.02
CVE-2017-18198 HIGH
GNU libcdio < 1.0.0 - Heap-Based Buffer Over-Read in iso-info.c
Feb 24, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-1000409 HIGH
glibc 2.5 - Buffer Overflow via LD_LIBRARY_PATH Environment Variable
Feb 01, 2018
CVSS 7.0
EPSS 0.01
CVE-2017-1000408 HIGH
glibc 2.1.1 - Memory Leak via LD_HWCAP_MASK Environment Variable
Feb 01, 2018
CVSS 7.8
EPSS 0.01
CVE-2017-18018 HIGH
GNU Coreutils < 8.29 - Race Condition via Symlink Replacement during Recursive Ownership Change
Jan 04, 2018
CVSS 7.1
EPSS 0.00
CVE-2017-1000455 MEDIUM
GuixSD < 0.13.0 - Origin Validation Error via Incorrect POSIX Hard Link Usage
Jan 02, 2018
CVSS 5.5
EPSS 0.00
CVE-2017-16997 HIGH
GNU C Library 2.19-2.26 - Privilege Escalation
Dec 18, 2017
CVSS 7.8
EPSS 0.01
CVE-2017-17531 HIGH
GNU GLOBAL - Argument Injection via BROWSER Environment Variable
Dec 14, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-17440 MEDIUM
GNU Libextractor 1.6 - Denial of Service via Crafted File Parsing
Dec 06, 2017
CVSS 6.5
EPSS 0.01
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 gnump3d 7
Quick Filters
Critical CVEs With Exploits In CISA KEV