gnu

1,212 tracked vulnerabilities.

CVE-2014-9488
GNU less <475 - Info Disclosure
Apr 14, 2015
EPSS 0.02
CVE-2014-8121
Suse Linux Enterprise Desktop < 2.21 - Denial of Service
Mar 27, 2015
EPSS 0.03
CVE-2014-9402
glibc < 2.21 - Denial of Service via DNS Response Processing
Feb 24, 2015
EPSS 0.09
CVE-2014-9471
GNU coreutils < 8.23 - Denial of Service via Crafted Date String in parse_datetime
Jan 16, 2015
EPSS 0.04
CVE-2014-8738
GNU binutils <2.24 - DoS
Jan 15, 2015
EPSS 0.08
CVE-2014-8737
GNU binutils <2.24 - Path Traversal
Dec 09, 2014
EPSS 0.00
CVE-2014-8504
Canonical Ubuntu Linux < 2.24 - Memory Corruption
Dec 09, 2014
EPSS 0.04
CVE-2014-8503
Fedora < 2.24 - Memory Corruption
Dec 09, 2014
EPSS 0.07
CVE-2014-8502
Fedora < 2.24 - Memory Corruption
Dec 09, 2014
EPSS 0.06
CVE-2014-8501
GNU binutils < 2.24 - Denial of Service via Crafted PE Executable AOUT Header
Dec 09, 2014
EPSS 0.06
CVE-2014-8485
Fedora < 2.24 - Code Injection
Dec 09, 2014
EPSS 0.04
CVE-2014-8484
GNU binutils < 2.24 - Denial of Service via Small S-record in srec_scan
Dec 09, 2014
EPSS 0.02
CVE-2014-6040
glibc < 2.20 - Denial of Service via iconv Multibyte Character Handling
Dec 05, 2014
EPSS 0.07
CVE-2014-9112
GNU Cpio 2.11 - Denial of Service via Large Block Value in Cpio Archive
Dec 02, 2014
EPSS 0.01
CVE-2014-7817
Canonical Ubuntu Linux - Improper Input Validation
Nov 24, 2014
EPSS 0.00
CVE-2014-8564
GnuTLS 3.x < 3.1.28, 3.2.x < 3.2.20, 3.3.x < 3.3.10 - Denial of Service via ECC Certificate Processing
Nov 13, 2014
EPSS 0.01
CVE-2014-4877
GNU Wget < 1.16 - Absolute Path Traversal via FTP LIST Response Symlink Handling
Oct 29, 2014
EPSS 0.74
CVE-2014-3564
GPGME < 1.5.1 - Heap-Based Buffer Overflow in Status Handler
Oct 20, 2014
EPSS 0.03
CVE-2014-4043
glibc < 2.20 - Use-After-Free via posix_spawn_file_actions_addopen Path Argument
Oct 06, 2014
EPSS 0.02
CVE-2014-6278 HIGH KEV
GNU Bash through 4.3 bash43-026 - Remote Code Execution via Environment Variable Function Parsing
Sep 30, 2014
CVSS 8.8
EPSS 0.92
CVE-2014-7187
GNU Bash through 4.3 bash43-026 - Denial of Service via Deeply Nested For Loops
Sep 28, 2014
EPSS 0.91
CVE-2014-7186
GNU Bash through 4.3 - Denial of Service via Redirection Here Document Handling
Sep 28, 2014
EPSS 0.90
CVE-2014-6277
GNU Bash through 4.3 bash43-026 - Remote Code Execution via Environment Variable Function Parsing
Sep 27, 2014
EPSS 0.88
CVE-2014-7169 CRITICAL KEV
GNU Bash < 4.3 - Remote Code Execution via Malformed Environment Variable Function Definitions
Sep 25, 2014
CVSS 9.8
EPSS 0.89
CVE-2014-6271 CRITICAL KEVNUCLEI
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
Sep 24, 2014
CVSS 9.8
EPSS 0.94
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 LibreDWG 7
Quick Filters
Critical CVEs With Exploits In CISA KEV