Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2019-12-27 CVE-2019-20013 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in GNU LibreDWG before 0.93.
network
low complexity
gnu opensuse CWE-770
6.5
6.5
2019-12-27 CVE-2019-20012 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in GNU LibreDWG 0.92.
network
low complexity
gnu opensuse CWE-770
6.5
6.5
2019-12-27 CVE-2019-20011 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in GNU LibreDWG 0.92.
network
low complexity
gnu opensuse CWE-125
8.8
8.8
2019-12-27 CVE-2019-20010 Use After Free vulnerability in multiple products
An issue was discovered in GNU LibreDWG 0.92.
network
low complexity
gnu opensuse CWE-416
8.8
8.8
2019-12-27 CVE-2019-20009 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in GNU LibreDWG before 0.93.
network
low complexity
gnu opensuse CWE-770
6.5
6.5
2019-12-20 CVE-2015-8313 Information Exposure Through Discrepancy vulnerability in multiple products
GnuTLS incorrectly validates the first byte of padding in CBC modes
network
high complexity
gnu debian CWE-203
5.9
5.9
2019-11-29 CVE-2019-14865 Privilege Defined With Unsafe Actions vulnerability in GNU Grub2
A flaw was found in the grub2-set-bootflag utility of grub2.
local
low complexity
gnu CWE-267
5.9
5.9
2019-11-28 CVE-2019-18276 Improper Check for Dropped Privileges vulnerability in multiple products
An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11.
local
low complexity
gnu netapp oracle CWE-273
7.8
7.8
2019-11-25 CVE-2015-1396 Path Traversal vulnerability in multiple products
A Directory Traversal vulnerability exists in the GNU patch before 2.7.4.
network
low complexity
gnu debian CWE-22
7.5
7.5
2019-11-20 CVE-2019-16200 Incorrect Conversion between Numeric Types vulnerability in GNU Serveez 0.2.2
GNU Serveez through 0.2.2 has an Information Leak.
network
low complexity
gnu CWE-681
7.5
7.5