Filtered by vendor Gnu
Subscribe
Total
1065 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-19187 | 2 Gnu, Netapp | 2 Ncurses, Active Iq Unified Manager | 2023-12-13 | N/A | 6.5 MEDIUM |
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. | |||||
CVE-2020-19186 | 2 Gnu, Netapp | 2 Ncurses, Active Iq Unified Manager | 2023-12-13 | N/A | 6.5 MEDIUM |
Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. | |||||
CVE-2020-19185 | 2 Gnu, Netapp | 2 Ncurses, Active Iq Unified Manager | 2023-12-13 | N/A | 6.5 MEDIUM |
Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. | |||||
CVE-2023-4949 | 2 Gnu, Xen | 2 Grub, Xen | 2023-12-10 | N/A | 6.7 MEDIUM |
An attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way to exploit a memory corruption in grub’s XFS file system implementation. | |||||
CVE-2023-39130 | 1 Gnu | 1 Gdb | 2023-12-10 | N/A | 5.5 MEDIUM |
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c. | |||||
CVE-2023-25588 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function, which may lead to an application crash and local denial of service. | |||||
CVE-2022-47007 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
An issue was discovered function stab_demangle_v3_arg in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks. | |||||
CVE-2022-35206 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c. | |||||
CVE-2022-28736 | 1 Gnu | 1 Grub2 | 2023-12-10 | N/A | 7.8 HIGH |
There's a use-after-free vulnerability in grub_cmd_chainloader() function; The chainloader command is used to boot up operating systems that doesn't support multiboot and do not have direct support from GRUB2. When executing chainloader more than once a use-after-free vulnerability is triggered. If an attacker can control the GRUB2's memory allocation pattern sensitive data may be exposed and arbitrary code execution can be achieved. | |||||
CVE-2022-28733 | 1 Gnu | 1 Grub2 | 2023-12-10 | N/A | 8.1 HIGH |
Integer underflow in grub_net_recv_ip4_packets; A malicious crafted IP packet can lead to an integer underflow in grub_net_recv_ip4_packets() function on rsm->total_len value. Under certain circumstances the total_len value may end up wrapping around to a small integer number which will be used in memory allocation. If the attack succeeds in such way, subsequent operations can write past the end of the buffer. | |||||
CVE-2023-39128 | 1 Gnu | 1 Gdb | 2023-12-10 | N/A | 5.5 MEDIUM |
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c. | |||||
CVE-2022-47673 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 7.8 HIGH |
An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts. | |||||
CVE-2020-35342 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 7.5 HIGH |
GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond (file opcodes/tic4x-dis.c) which could allow attackers to make an information leak. | |||||
CVE-2020-19724 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command. | |||||
CVE-2022-47696 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 7.8 HIGH |
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols. | |||||
CVE-2020-21490 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled. | |||||
CVE-2022-47008 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 5.5 MEDIUM |
An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks. | |||||
CVE-2022-48064 | 3 Fedoraproject, Gnu, Netapp | 3 Fedora, Binutils, Ontap Select Deploy Administration Utility | 2023-12-10 | N/A | 5.5 MEDIUM |
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack. | |||||
CVE-2022-44840 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 7.8 HIGH |
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function find_section_in_set in file readelf.c. | |||||
CVE-2022-47695 | 1 Gnu | 1 Binutils | 2023-12-10 | N/A | 7.8 HIGH |
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function bfd_mach_o_get_synthetic_symtab in match-o.c. |