Vulnerabilities > GNU
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-21 | CVE-2016-10739 | Improper Input Validation vulnerability in multiple products In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings. | 5.3 |
| 2019-01-18 | CVE-2019-6488 | Improper Resource Shutdown or Release vulnerability in GNU Glibc The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the x32 architecture, incorrectly attempts to use a 64-bit register for size_t in assembly codes, which can lead to a segmentation fault or possibly unspecified other impact, as demonstrated by a crash in __memmove_avx_unaligned_erms in sysdeps/x86_64/multiarch/memmove-vec-unaligned-erms.S during a memcpy. | 7.8 |
| 2019-01-16 | CVE-2019-6460 | NULL Pointer Dereference vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-16 | CVE-2019-6459 | Memory Leak vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-16 | CVE-2019-6458 | Memory Leak vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-16 | CVE-2019-6457 | Memory Leak vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-16 | CVE-2019-6456 | NULL Pointer Dereference vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-16 | CVE-2019-6455 | Double Free vulnerability in GNU Recutils 1.8 An issue was discovered in GNU Recutils 1.8. | 6.5 |
| 2019-01-15 | CVE-2018-20712 | Out-of-bounds Read vulnerability in GNU Binutils 2.31.1 A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. | 6.5 |
| 2019-01-04 | CVE-2018-20673 | Integer Overflow or Wraparound vulnerability in GNU Binutils 2.31.1 The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm. | 5.5 |