Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-25585 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-14 CVE-2023-25586 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-14 CVE-2023-25588 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-13 CVE-2023-4039 Unspecified vulnerability in GNU GCC
**DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in your application without this being detected.
network
high complexity
gnu
4.8
4.8
2023-09-12 CVE-2023-4813 Use After Free vulnerability in multiple products
A flaw was found in glibc.
network
high complexity
gnu redhat fedoraproject netapp CWE-416
5.9
5.9
2023-08-22 CVE-2020-19188 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
6.5
2023-08-22 CVE-2020-19189 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp debian CWE-787
6.5
6.5
2023-08-22 CVE-2020-19190 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
6.5
2023-08-22 CVE-2020-19724 Memory Leak vulnerability in GNU Binutils
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command.
local
low complexity
gnu CWE-401
5.5
5.5
2023-08-22 CVE-2020-19726 Unspecified vulnerability in GNU Binutils 2.36
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service.
network
low complexity
gnu
8.8
8.8