Vulnerabilities > GNU > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-25 | CVE-2023-39129 | Use After Free vulnerability in GNU GDB 13.0.50.20220805Git GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c. | 5.5 |
| 2023-07-25 | CVE-2023-39130 | Out-of-bounds Write vulnerability in GNU GDB 13.0.50.20220805Git GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c. | 5.5 |
| 2023-07-18 | CVE-2021-32256 | Out-of-bounds Write vulnerability in GNU Binutils 2.36 An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. | 6.5 |
| 2023-06-25 | CVE-2015-20109 | Classic Buffer Overflow vulnerability in GNU Glibc end_pattern (called from internal_fnmatch) in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash), as demonstrated by use of the fnmatch library function with the **(!() pattern. | 5.5 |
| 2023-05-17 | CVE-2023-1972 | Out-of-bounds Write vulnerability in GNU Binutils A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. | 6.5 |
| 2023-04-15 | CVE-2021-34337 | Unspecified vulnerability in GNU Mailman An issue was discovered in Mailman Core before 3.3.5. | 6.3 |
| 2023-04-08 | CVE-2023-24626 | Unspecified vulnerability in GNU Screen socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD), allows local users to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process. | 6.5 |
| 2023-02-28 | CVE-2023-27371 | Out-of-bounds Read vulnerability in GNU Libmicrohttpd GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. | 5.9 |
| 2023-01-30 | CVE-2022-48303 | Out-of-bounds Read vulnerability in multiple products GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. | 5.5 |
| 2023-01-27 | CVE-2022-4285 | An illegal memory access flaw was found in the binutils package. | 5.5 |