Vulnerabilities > GNU > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-08-22 CVE-2020-19186 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
2023-08-22 CVE-2020-19187 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
2023-08-14 CVE-2023-40305 Out-of-bounds Write vulnerability in GNU Indent 2.2.13
GNU indent 2.2.13 has a heap-based buffer overflow in search_brace in indent.c via a crafted file.
local
low complexity
gnu CWE-787
5.5
2023-07-25 CVE-2023-39128 Out-of-bounds Write vulnerability in GNU GDB 13.0.50.20220805Git
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c.
local
low complexity
gnu CWE-787
5.5
2023-07-25 CVE-2023-39129 Use After Free vulnerability in GNU GDB 13.0.50.20220805Git
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.
local
low complexity
gnu CWE-416
5.5
2023-07-25 CVE-2023-39130 Out-of-bounds Write vulnerability in GNU GDB 13.0.50.20220805Git
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.
local
low complexity
gnu CWE-787
5.5
2023-07-18 CVE-2021-32256 Out-of-bounds Write vulnerability in GNU Binutils 2.36
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36.
network
low complexity
gnu CWE-787
6.5
2023-06-25 CVE-2015-20109 Classic Buffer Overflow vulnerability in GNU Glibc
end_pattern (called from internal_fnmatch) in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash), as demonstrated by use of the fnmatch library function with the **(!() pattern.
local
low complexity
gnu CWE-120
5.5
2023-05-17 CVE-2023-1972 Out-of-bounds Write vulnerability in GNU Binutils
A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c.
network
low complexity
gnu CWE-787
6.5
2023-04-15 CVE-2021-34337 Unspecified vulnerability in GNU Mailman
An issue was discovered in Mailman Core before 3.3.5.
local
high complexity
gnu
6.3