Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2021-04-07 CVE-2021-30184 Classic Buffer Overflow vulnerability in GNU Chess 6.2.7
GNU Chess 6.2.7 allows attackers to execute arbitrary code via crafted PGN (Portable Game Notation) data.
network
gnu CWE-120
6.8
2021-03-26 CVE-2021-20284 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in GNU Binutils 2.35.1
A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due to the number of symbols not calculated correctly.
network
gnu CWE-119
4.3
2021-03-26 CVE-2021-20197 Link Following vulnerability in multiple products
There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib.
local
gnu redhat CWE-59
3.3
2021-03-26 CVE-2021-20193 Memory Leak vulnerability in GNU TAR
A flaw was found in the src/list.c of tar 1.33 and earlier.
network
gnu CWE-401
4.3
2021-03-25 CVE-2021-3466 Classic Buffer Overflow vulnerability in multiple products
A flaw was found in libmicrohttpd in versions before 0.9.71.
network
low complexity
gnu redhat fedoraproject CWE-120
critical
10.0
2021-03-22 CVE-2021-28968 Cross-Site Scripting vulnerability in GNU Punbb
An issue was discovered in PunBB before 1.4.6.
network
gnu CWE-79
3.5
2021-03-15 CVE-2021-3418 Improper Preservation of Permissions vulnerability in GNU Grub2
If certificates that signed grub are installed into db, grub can be booted directly.
local
gnu CWE-281
4.4
2021-03-12 CVE-2021-20232 USE After Free vulnerability in multiple products
A flaw was found in gnutls.
network
low complexity
gnu redhat CWE-416
7.5
2021-03-12 CVE-2021-20231 USE After Free vulnerability in multiple products
A flaw was found in gnutls.
network
low complexity
gnu redhat CWE-416
7.5
2021-03-03 CVE-2021-20233 Out-Of-Bounds Write vulnerability in multiple products
A flaw was found in grub2 in versions prior to 2.06.
local
low complexity
gnu redhat fedoraproject CWE-787
7.2