gnu
1,238 tracked vulnerabilities.
CVE-2024-27630
HIGH
GNU Savane < 3.13 - Unauthenticated Arbitrary File Deletion via trackers_data_delete_file Function
Apr 08, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-2312
MEDIUM
GRUB2 < 2.12-1ubuntu5 - Use-After-Free in peimage Module
Apr 05, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-30205
HIGH
Emacs < 29.3 and Org Mode < 9.6.23 - Unauthenticated Download of Code Without Integrity Check
Mar 25, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-30204
LOW
Emacs < 29.3 - Incorrect Default Permissions for LaTeX Preview in Email Attachments
Mar 25, 2024
CVSS 2.8
EPSS 0.00
CVE-2024-30203
MEDIUM
Emacs < 29.3 - Unauthenticated Arbitrary Code Execution via Inline MIME Content Handling
Mar 25, 2024
CVSS 5.5
EPSS 0.01
CVE-2024-30202
HIGH
Emacs < 29.3 and Org Mode < 9.6.23 - Arbitrary Lisp Code Execution via Org Mode Activation
Mar 25, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-1048
LOW
GRUB2 - Incomplete Cleanup in grub2-set-bootflag Temporary File Handling
Feb 06, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-0911
MEDIUM
GNU indent - Heap-based Buffer Overflow via Crafted File
Feb 06, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0684
MEDIUM
GNU coreutils - Heap-based Buffer Overflow in split line_bytes_split()
Feb 06, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0567
HIGH
GnuTLS >=3.7.0 <3.8.3 - Denial of Service via Certificate Chain Validation
Jan 16, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-0553
HIGH
GnuTLS - Timing Side-Channel Attack
Jan 16, 2024
CVSS 7.5
EPSS 0.02
CVE-2023-39804
MEDIUM
GNU tar < 1.35 - Denial of Service via PAX Archive Extension Attributes
Mar 27, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-7207
MEDIUM
GNU cpio - Path Traversal via --no-absolute-filenames Option
Feb 29, 2024
CVSS 4.9
EPSS 0.01
CVE-2023-7216
MEDIUM
GNU cpio - Path Traversal via Symlink Handling
Feb 05, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-6780
MEDIUM
glibc 2.37-2.38 - Heap-Based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 5.3
EPSS 0.03
CVE-2023-6779
HIGH
glibc 2.37-2.38 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.2
EPSS 0.03
CVE-2023-6246
HIGH
NUCLEI
glibc >=2.36 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.4
EPSS 0.05
CVE-2023-4001
MEDIUM
GRUB2 - Authentication Bypass via Duplicate UUID Configuration File
Jan 15, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-26157
MEDIUM
libredwg < 0.12.5.6384 - Denial of Service via Out-of-Bounds Read in decode_r2007.c
Jan 02, 2024
CVSS 5.5
EPSS 0.01
CVE-2023-5981
MEDIUM
GnuTLS - Timing Side-Channel in RSA-PSK ClientKeyExchange
Nov 28, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-4949
HIGH
GRUB < 0.97 - Memory Corruption via XFS File System Implementation
Nov 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-4693
MEDIUM
GRUB2 < 2.12 - Out-of-bounds Read in NTFS Filesystem Driver
Oct 25, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-4692
HIGH
GRUB2 < 2.12 - Heap-based Buffer Overflow in NTFS Filesystem Driver
Oct 25, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-4911
HIGH
KEVNUCLEI
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Oct 03, 2023
CVSS 7.8
EPSS 0.81
CVE-2023-4156
MEDIUM
gawk < 5.1.1 - Heap Out-of-Bounds Read in builtin.c
Sep 25, 2023
CVSS 4.4
EPSS 0.00
Products
binutils 276
glibc 163
libredwg 89
gnutls 74
grub2 53
mailman 47
emacs 35
ncurses 29
wget 24
bash 18
tar 18
pspp 16
Binutils 15
patch 15
gcc 14
recutils 14
gzip 13
libextractor 13
libtasn1 13
cpio 12
LibreDWG 10
coreutils 10
groff 10
libiberty 10
privacy_guard 10
gdb 9
screen 9
adns 8
inetutils 8
mailutils 8
Quick Filters