gnu

1,205 tracked vulnerabilities.

CVE-2025-8224 LOW
GNU Binutils 2.44 - Null Pointer Dereference in BFD Library
Jul 27, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-7546 MEDIUM
GNU Binutils <2.45 - Out-of-bounds Write
Jul 13, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-7545 MEDIUM
GNU Binutils <2.45 - Heap-based Buffer Overflow
Jul 13, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-45582 MEDIUM
GNU Tar < 1.35 - Path Traversal and Arbitrary File Overwrite via Symlink and Relative Pathname
Jul 11, 2025
CVSS 4.1
EPSS 0.00
CVE-2025-32990 MEDIUM
GnuTLS - Heap-based Buffer Overflow in Certtool Template Parsing
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-32989 MEDIUM
GnuTLS - Heap-Buffer-Overread in Certificate Transparency SCT Extension Parsing
Jul 10, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-32988 MEDIUM
GnuTLS < 3.8.10 - Double Free in Subject Alternative Name Export Logic
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-6141 LOW
GNU ncurses <6.5-20250322 - Buffer Overflow
Jun 16, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-5899 MEDIUM
GNU PSPP - Use-After-Free in parse_variables_option
Jun 09, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-5898 MEDIUM
GNU PSPP - Out-of-Bounds Write in parse_variables_option
Jun 09, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-5745 MEDIUM
GNU C Library >=2.40 - Memory Corruption
Jun 05, 2025
CVSS 5.6
EPSS 0.00
CVE-2025-5702 MEDIUM
GNU C Library >=2.39 - Memory Corruption
Jun 05, 2025
CVSS 5.6
EPSS 0.00
CVE-2025-5245 MEDIUM
GNU Binutils < 2.45 - Memory Corruption in debug_type_samep Function
May 27, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-5244 MEDIUM
GNU Binutils < 2.45 - Memory Corruption in elf_gc_sweep
May 27, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-5001 LOW
GNU PSPP <82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb - Integer Overflow
May 20, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-48188 LOW
GNU PSPP < 2.0.1 - Heap-Based Buffer Over-Read in Encrypted File Handling
May 16, 2025
CVSS 2.9
EPSS 0.00
CVE-2025-4802 HIGH
GNU C Library <2.39 - Code Injection
May 16, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-47816 LOW
GNU PSPP < 2.0.1 - Out-of-bounds Read in spvxml_parse_attributes
May 10, 2025
CVSS 2.9
EPSS 0.00
CVE-2025-47815 MEDIUM
GNU PSPP < 2.0.1 - Heap-based Buffer Overflow in zip-reader.c
May 10, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-47814 MEDIUM
GNU PSPP < 2.0.1 - Heap-based Buffer Overflow in zip-reader.c
May 10, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-47229 LOW
GNU PSPP < 2.0.1 - Denial of Service via Crafted Input Data
May 03, 2025
CVSS 2.9
EPSS 0.00
CVE-2025-43921 MEDIUM
GNU Mailman 2.1.1-2.1.38 - Unauthenticated List Creation via /mailman/create Endpoint
Apr 20, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-43920 MEDIUM
GNU Mailman 2.1.1-2.1.38 - Unauthenticated OS Command Injection via Email Subject Line
Apr 20, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-43919 MEDIUM
GNU Mailman 2.1.1-2.1.38 - Unauthenticated Path Traversal via Username Parameter
Apr 20, 2025
CVSS 5.8
EPSS 0.00
CVE-2025-3198 LOW
GNU Binutils 2.43-2.44 - Memory Leak in objdump display_info Function
Apr 04, 2025
CVSS 3.3
EPSS 0.00
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 gnump3d 7
Quick Filters
Critical CVEs With Exploits In CISA KEV