Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2021-01-04 CVE-2019-25013 Out-Of-Bounds Read vulnerability in GNU Glibc
The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.
network
gnu CWE-125
7.1
2021-01-04 CVE-2020-35507 Null Pointer Dereference vulnerability in multiple products
There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference.
network
gnu redhat CWE-476
4.3
2021-01-04 CVE-2020-35496 Null Pointer Dereference vulnerability in multiple products
There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference.
network
gnu redhat CWE-476
4.3
2021-01-04 CVE-2020-35495 Null Pointer Dereference vulnerability in multiple products
There's a flaw in binutils /bfd/pef.c.
network
gnu redhat CWE-476
4.3
2021-01-04 CVE-2020-35494 USE of Uninitialized Resource vulnerability in multiple products
There's a flaw in binutils /opcodes/tic4x-dis.c.
network
gnu redhat CWE-908
5.8
2021-01-04 CVE-2020-35493 Improper Input Validation vulnerability in multiple products
A flaw exists in binutils in bfd/pef.c.
network
gnu redhat CWE-20
4.3
2020-12-27 CVE-2020-35448 Out-Of-Bounds Write vulnerability in GNU Binutils 2.35.1
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1.
network
gnu CWE-787
6.8
2020-12-09 CVE-2020-16599 Null Pointer Dereference vulnerability in GNU Binutils 2.34
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.34, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a crafted file.
network
gnu CWE-476
4.3
2020-12-09 CVE-2020-16598 Null Pointer Dereference vulnerability in GNU Binutils 2.34
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.34, in debug_get_real_type, as demonstrated in objdump, that can cause a denial of service via a crafted file.
network
gnu CWE-476
4.3
2020-12-09 CVE-2020-16593 Null Pointer Dereference vulnerability in GNU Binutils 2.34
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.34, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted file.
network
gnu CWE-476
4.3