Vulnerabilities > GNU > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-05 | CVE-2022-39832 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in PSPP 1.6.2. | 7.8 |
| 2022-08-31 | CVE-2022-1271 | Improper Input Validation vulnerability in multiple products An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. | 8.8 |
| 2022-08-30 | CVE-2022-39028 | NULL Pointer Dereference vulnerability in multiple products telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. | 7.5 |
| 2022-08-24 | CVE-2021-3998 | A flaw was found in glibc. | 7.5 |
| 2022-08-24 | CVE-2021-3999 | A flaw was found in glibc. | 7.8 |
| 2022-08-01 | CVE-2022-2509 | Double Free vulnerability in multiple products A vulnerability found in gnutls. | 7.5 |
| 2022-07-19 | CVE-2022-2469 | Out-of-bounds Read vulnerability in multiple products GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client | 8.1 |
| 2022-07-06 | CVE-2021-3697 | Out-of-bounds Write vulnerability in multiple products A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. | 7.0 |
| 2022-06-23 | CVE-2022-33024 | Reachable Assertion vulnerability in GNU Libredwg 0.12.4.4608 There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int, BITCODE_RL, BITCODE_RL, Bit_Chain *, Dwg_Data *' failed at dwg2dxf: decode.c:5801 in libredwg v0.12.4.4608. | 7.5 |
| 2022-06-23 | CVE-2022-33025 | Use After Free vulnerability in GNU Libredwg LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decode_preR13_section at decode_r11.c. | 7.8 |