gnu

1,238 tracked vulnerabilities.

CVE-2024-27630 HIGH
GNU Savane < 3.13 - Unauthenticated Arbitrary File Deletion via trackers_data_delete_file Function
Apr 08, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-2312 MEDIUM
GRUB2 < 2.12-1ubuntu5 - Use-After-Free in peimage Module
Apr 05, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-30205 HIGH
Emacs < 29.3 and Org Mode < 9.6.23 - Unauthenticated Download of Code Without Integrity Check
Mar 25, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-30204 LOW
Emacs < 29.3 - Incorrect Default Permissions for LaTeX Preview in Email Attachments
Mar 25, 2024
CVSS 2.8
EPSS 0.00
CVE-2024-30203 MEDIUM
Emacs < 29.3 - Unauthenticated Arbitrary Code Execution via Inline MIME Content Handling
Mar 25, 2024
CVSS 5.5
EPSS 0.01
CVE-2024-30202 HIGH
Emacs < 29.3 and Org Mode < 9.6.23 - Arbitrary Lisp Code Execution via Org Mode Activation
Mar 25, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-1048 LOW
GRUB2 - Incomplete Cleanup in grub2-set-bootflag Temporary File Handling
Feb 06, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-0911 MEDIUM
GNU indent - Heap-based Buffer Overflow via Crafted File
Feb 06, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0684 MEDIUM
GNU coreutils - Heap-based Buffer Overflow in split line_bytes_split()
Feb 06, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-0567 HIGH
GnuTLS >=3.7.0 <3.8.3 - Denial of Service via Certificate Chain Validation
Jan 16, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-0553 HIGH
GnuTLS - Timing Side-Channel Attack
Jan 16, 2024
CVSS 7.5
EPSS 0.02
CVE-2023-39804 MEDIUM
GNU tar < 1.35 - Denial of Service via PAX Archive Extension Attributes
Mar 27, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-7207 MEDIUM
GNU cpio - Path Traversal via --no-absolute-filenames Option
Feb 29, 2024
CVSS 4.9
EPSS 0.01
CVE-2023-7216 MEDIUM
GNU cpio - Path Traversal via Symlink Handling
Feb 05, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-6780 MEDIUM
glibc 2.37-2.38 - Heap-Based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 5.3
EPSS 0.03
CVE-2023-6779 HIGH
glibc 2.37-2.38 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.2
EPSS 0.03
CVE-2023-6246 HIGH NUCLEI
glibc >=2.36 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.4
EPSS 0.05
CVE-2023-4001 MEDIUM
GRUB2 - Authentication Bypass via Duplicate UUID Configuration File
Jan 15, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-26157 MEDIUM
libredwg < 0.12.5.6384 - Denial of Service via Out-of-Bounds Read in decode_r2007.c
Jan 02, 2024
CVSS 5.5
EPSS 0.01
CVE-2023-5981 MEDIUM
GnuTLS - Timing Side-Channel in RSA-PSK ClientKeyExchange
Nov 28, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-4949 HIGH
GRUB < 0.97 - Memory Corruption via XFS File System Implementation
Nov 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-4693 MEDIUM
GRUB2 < 2.12 - Out-of-bounds Read in NTFS Filesystem Driver
Oct 25, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-4692 HIGH
GRUB2 < 2.12 - Heap-based Buffer Overflow in NTFS Filesystem Driver
Oct 25, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-4911 HIGH KEVNUCLEI
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Oct 03, 2023
CVSS 7.8
EPSS 0.81
CVE-2023-4156 MEDIUM
gawk < 5.1.1 - Heap Out-of-Bounds Read in builtin.c
Sep 25, 2023
CVSS 4.4
EPSS 0.00