gnu

1,205 tracked vulnerabilities.

CVE-2024-0684 MEDIUM
GNU coreutils - Heap-based Buffer Overflow in split line_bytes_split()
Feb 06, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0567 HIGH
GnuTLS >=3.7.0 <3.8.3 - Denial of Service via Certificate Chain Validation
Jan 16, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-0553 HIGH
GnuTLS - Timing Side-Channel Attack
Jan 16, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-39804 MEDIUM
GNU tar < 1.35 - Denial of Service via PAX Archive Extension Attributes
Mar 27, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-7207 MEDIUM
GNU cpio - Path Traversal via --no-absolute-filenames Option
Feb 29, 2024
CVSS 4.9
EPSS 0.00
CVE-2023-7216 MEDIUM
GNU cpio - Path Traversal via Symlink Handling
Feb 05, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-6780 MEDIUM
glibc 2.37-2.38 - Heap-Based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-6779 HIGH
glibc 2.37-2.38 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.2
EPSS 0.01
CVE-2023-6246 HIGH NUCLEI
glibc >=2.36 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.4
EPSS 0.25
CVE-2023-4001 MEDIUM
GRUB2 - Authentication Bypass via Duplicate UUID Configuration File
Jan 15, 2024
CVSS 6.8
EPSS 0.00
CVE-2023-26157 MEDIUM
libredwg < 0.12.5.6384 - Denial of Service via Out-of-Bounds Read in decode_r2007.c
Jan 02, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-5981 MEDIUM
GnuTLS - Timing Side-Channel in RSA-PSK ClientKeyExchange
Nov 28, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-4949 HIGH
GRUB < 0.97 - Memory Corruption via XFS File System Implementation
Nov 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-4693 MEDIUM
GRUB2 < 2.12 - Out-of-bounds Read in NTFS Filesystem Driver
Oct 25, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-4692 HIGH
GRUB2 < 2.12 - Heap-based Buffer Overflow in NTFS Filesystem Driver
Oct 25, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4911 HIGH KEVNUCLEI
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Oct 03, 2023
CVSS 7.8
EPSS 0.64
CVE-2023-4156 MEDIUM
gawk < 5.1.1 - Heap Out-of-Bounds Read in builtin.c
Sep 25, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-5156 HIGH
glibc 2.34-2.38 - Use-After-Free in getaddrinfo
Sep 25, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4806 MEDIUM
glibc - Use-After-Free in getaddrinfo with NSS Module Hooks
Sep 18, 2023
CVSS 5.9
EPSS 0.02
CVE-2023-4527 MEDIUM
glibc >=2.36 <2.36.113 - Stack-based Buffer Overflow via getaddrinfo DNS Response
Sep 18, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-25588 MEDIUM
Binutils - Denial of Service via Uninitialized Variable in bfd_mach_o_get_synthetic_symtab
Sep 14, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-25586 MEDIUM
Binutils - Denial of Service via Uninitialized Variable in bfd_init_section_decompress_status
Sep 14, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-25585 MEDIUM
Binutils - Denial of Service via Uninitialized Variable in Module Structure
Sep 14, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-25584 MEDIUM
Binutils < 2.40 - Out-of-bounds Read in parse_module Function
Sep 14, 2023
CVSS 6.3
EPSS 0.00
CVE-2023-4039 MEDIUM
GCC-based toolchains - Buffer Overflow
Sep 13, 2023
CVSS 4.8
EPSS 0.00
Products
binutils 276 glibc 163 libredwg 87 gnutls 73 grub2 53 mailman 47 emacs 35 ncurses 29 wget 20 bash 18 tar 18 pspp 16 Binutils 15 gcc 14 recutils 14 libextractor 13 libtasn1 13 patch 13 cpio 12 gzip 11 coreutils 10 groff 10 libiberty 10 privacy_guard 10 gdb 9 screen 9 adns 8 inetutils 8 mailutils 8 gnump3d 7
Quick Filters
Critical CVEs With Exploits In CISA KEV