VYPR

Vendor CVEs

GNU

All CVEs

1,137 total · sorted by risk
  • CVE-2026-57053Jun 23, 2026
    risk 0.00cvss epss 0.00

    GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idna_to_unicode_internal. The affected code is not present in libidn2.

  • CVE-2026-56968Jun 23, 2026
    risk 0.00cvss epss 0.00

    GNU SASL before 2.2.4 lacks sanitization of a short challenge in _gsasl_ntlm_client_step in the NTLM client, which could result in memory disclosure via a crafted server.

  • CVE-2026-56355Jun 20, 2026
    risk 0.00cvss epss 0.00

    GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

  • CVE-2026-4647Mar 23, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and executables. The issue occurs when processing specially crafted XCOFF object files, where a relocation type value is not properly validated before being…

  • CVE-2026-3441Mar 15, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker…

  • CVE-2026-3442Mar 15, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful…

  • CVE-2025-69648Mar 9, 2026
    risk 0.00cvss epss 0.00

    GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward…

  • CVE-2025-69647Mar 9, 2026
    risk 0.00cvss epss 0.00

    GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress,…

  • CVE-2025-69645Mar 6, 2026
    risk 0.00cvss epss 0.00

    Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian,…

  • CVE-2025-69651Mar 6, 2026
    risk 0.00cvss epss 0.00

    GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dump_relocations returns early due to parsing errors, the internal all_relocations array may remain…

  • CVE-2025-69652Mar 6, 2026
    risk 0.00cvss epss 0.00

    GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort (SIGABRT) when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in process_debug_info(), an invalid debug_info_p state may propagate…

  • CVE-2025-69649Mar 6, 2026
    risk 0.00cvss epss 0.00

    GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a…

  • CVE-2025-69646Mar 6, 2026
    risk 0.00cvss epss 0.00

    Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug_rnglists data. A logic error in the handling of the debug_rnglists header can cause objdump to repeatedly print the same warning message and fail to terminate,…

  • CVE-2026-28372Feb 27, 2026
    risk 0.00cvss epss 0.00

    telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login(1) implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALS_DIRECTORY environment…

  • CVE-2025-15337Feb 5, 2026
    risk 0.00cvss epss 0.00

    Tanium addressed an incorrect default permissions vulnerability in Patch.

  • CVE-2025-15281Jan 20, 2026
    risk 0.00cvss epss 0.00

    Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process.

  • CVE-2026-0915Jan 15, 2026
    risk 0.00cvss epss 0.01

    Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries for a zero-valued network in the GNU C Library version 2.0 to version 2.42 can leak stack contents to the configured DNS resolver.

  • CVE-2026-0861Jan 14, 2026
    risk 0.00cvss epss 0.00

    Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned_alloc) in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have…

  • CVE-2025-69195Jan 9, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in GNU Wget2. This vulnerability, a stack-based buffer overflow, occurs in the filename sanitization logic when processing attacker-controlled URL paths, particularly when filename restriction options are active. A remote attacker can exploit this by providing a…

  • CVE-2025-69194Jan 9, 2026
    risk 0.00cvss epss 0.01

    A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead…

  • CVE-2025-65409Dec 30, 2025
    risk 0.00cvss epss 0.00

    A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.

  • CVE-2025-66862Dec 29, 2025
    risk 0.00cvss epss 0.00

    A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

  • CVE-2025-66866Dec 29, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

  • CVE-2025-66863Dec 29, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

  • CVE-2025-66865Dec 29, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

  • CVE-2025-66861Dec 29, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file.

  • CVE-2025-66864Dec 29, 2025
    risk 0.00cvss epss 0.00

    An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

  • CVE-2025-62689Nov 10, 2025
    risk 0.00cvss epss 0.00

    NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The vulnerability was fixed in commit ff13abc on the master branch of the libmicrohttpd Git repository, after the v1.0.2 tag. A specially crafted packet sent by an attacker could cause a…

  • CVE-2025-59777Nov 10, 2025
    risk 0.00cvss epss 0.00

    NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The vulnerability was fixed in commit ff13abc on the master branch of the libmicrohttpd Git repository, after the v1.0.2 tag. A specially crafted packet sent by an attacker could cause a…

  • CVE-2025-45582Jul 11, 2025
    risk 0.00cvss epss 0.00

    GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with a certain two-step process. First, the victim must extract an archive that contains a ../ symlink to a critical directory. Second, the victim must extract an archive that contains a…

  • CVE-2025-5745Jun 5, 2025
    risk 0.00cvss epss 0.00

    The strncmp implementation optimized for the Power10 processor in the GNU C Library version 2.40 and later writes to vector registers v20 to v31 without saving contents from the caller (those registers are defined as non-volatile registers by the powerpc64le ABI), resulting in…

  • CVE-2025-5702Jun 5, 2025
    risk 0.00cvss epss 0.00

    The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39 and later writes to vector registers v20 to v31 without saving contents from the caller (those registers are defined as non-volatile registers by the powerpc64le ABI), resulting in…

  • CVE-2025-5001May 20, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been declared as problematic. This vulnerability affects the function calloc of the file pspp-convert.c. The manipulation of the argument -l leads to integer overflow. Local access is required…

  • CVE-2025-4802May 16, 2025
    risk 0.00cvss epss 0.00

    Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or…

  • CVE-2025-48188May 16, 2025
    risk 0.00cvss epss 0.00

    libpspp-core.a in GNU PSPP through 2.0.1 has an incorrect call from fill_buffer (in data/encrypted-file.c) to the Gnulib rijndaelDecrypt function, leading to a heap-based buffer over-read.

  • CVE-2025-47815May 10, 2025
    risk 0.00cvss epss 0.00

    libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from zip_member_read_all) in zip-reader.c.

  • CVE-2025-47816May 10, 2025
    risk 0.00cvss epss 0.00

    libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.

  • CVE-2025-47814May 10, 2025
    risk 0.00cvss epss 0.00

    libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from spv_read_xml_member) in zip-reader.c.

  • CVE-2025-47229May 3, 2025
    risk 0.00cvss epss 0.00

    libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service (var_set_leave_quiet assertion failure and application exit) via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code.

  • CVE-2025-43919Apr 20, 2025
    risk 0.00cvss epss 0.01

    GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to read arbitrary files via ../ directory traversal at /mailman/private/mailman (aka the private archive authentication endpoint) via the username parameter. NOTE: multiple third parties report…

  • CVE-2025-43920Apr 20, 2025
    risk 0.00cvss epss 0.00

    GNU Mailman 2.1.39, as bundled in cPanel (and WHM), in certain external archiver configurations, allows unauthenticated attackers to execute arbitrary OS commands via shell metacharacters in an email Subject line. NOTE: multiple third parties report that they are unable to…

  • CVE-2025-43921Apr 20, 2025
    risk 0.00cvss epss 0.00

    GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to create lists via the /mailman/create endpoint. NOTE: multiple third parties report that they are unable to reproduce this, regardless of whether cPanel or WHM is used.

  • CVE-2025-0685Mar 3, 2025
    risk 0.00cvss epss 0.00

    A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted…

  • CVE-2025-0678Mar 3, 2025
    risk 0.00cvss epss 0.00

    A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted…

  • CVE-2025-1182Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely.…

  • CVE-2025-1181Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. The attack can be initiated remotely. The complexity…

  • CVE-2025-1180Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function _bfd_elf_write_section_eh_frame of the file bfd/elf-eh-frame.c of the component ld. The manipulation leads to memory corruption. It is possible to initiate the attack…

  • CVE-2025-1179Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads to memory corruption. The attack may be launched remotely. The complexity of an…

  • CVE-2025-1178Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the function bfd_putl64 of the file libbfd.c of the component ld. The manipulation leads to memory corruption. The attack can be launched remotely. The…

  • CVE-2025-1176Feb 11, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The complexity…

Page 11 of 23