Vulnerabilities > GNU > Bison > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-08-25 CVE-2020-24240 Use After Free vulnerability in GNU Bison 3.7
GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered.
local
low complexity
gnu CWE-416
5.5
5.5
2020-06-15 CVE-2020-14150 Unspecified vulnerability in GNU Bison
GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash).
local
low complexity
gnu
5.5
5.5