Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GNU — Vulnerabilities & Security Advisories 77

Browse all 77 CVE security advisories affecting GNU. AI-powered Chinese analysis, POCs, and references for each vulnerability.

GNU provides a comprehensive collection of free software essential for operating system functionality, primarily serving as the foundational userland for Linux distributions. Its core use case involves delivering command-line utilities, development tools, and system libraries that enable software compilation and execution. Historically, vulnerabilities within the GNU ecosystem have frequently involved buffer overflows and integer overflows, often leading to remote code execution or denial of service conditions. While cross-site scripting is less relevant to its command-line nature, privilege escalation risks have emerged in specific components like coreutils and grep when handling malformed input. Notable security incidents have included critical flaws in GnuPG and Bash, highlighting the importance of rigorous input validation. With seventy-seven recorded CVEs, the project maintains a steady patch cycle, emphasizing stability and security through open-source collaboration and continuous code review processes.

Found 31 results / 77Clear Filters
Top products by GNU: Binutils PSPP GRUB2 elfutils Inetutils Mailman cflow Libgcrypt ncurses wget C Library GNU SASL gdb Tar libopts Guix gcc Sed wget2
CVE IDTitleCVSSSeverityPublished
CVE-2025-11840 GNU Binutils ldmisc.c vfinfo out-of-bounds — BinutilsCWE-125 3.3 Low2025-10-16
CVE-2025-11839 GNU Binutils prdbg.c tg_tag_type return value — BinutilsCWE-252 3.3 Low2025-10-16
CVE-2025-11495 GNU Binutils Linker elf64-x86-64.c elf_x86_64_relocate_section heap-based overflow — BinutilsCWE-122 3.3 Low2025-10-08
CVE-2025-11494 GNU Binutils Linker elfxx-x86.c _bfd_x86_elf_late_size_sections out-of-bounds — BinutilsCWE-125 3.3 Low2025-10-08
CVE-2025-11414 GNU Binutils Linker elflink.c get_link_hash_entry out-of-bounds — BinutilsCWE-125 3.3 Low2025-10-07
CVE-2025-11413 GNU Binutils Linker elflink.c elf_link_add_object_symbols out-of-bounds — BinutilsCWE-125 3.3 Low2025-10-07
CVE-2025-11412 GNU Binutils Linker elflink.c bfd_elf_gc_record_vtentry out-of-bounds — BinutilsCWE-125 3.3 Low2025-10-07
CVE-2025-11083 GNU Binutils Linker elfcode.h elf_swap_shdr heap-based overflow — BinutilsCWE-122 5.3 Medium2025-09-27
CVE-2025-11082 GNU Binutils Linker elf-eh-frame.c _bfd_elf_parse_eh_frame heap-based overflow — BinutilsCWE-122 5.3 Medium2025-09-27
CVE-2025-11081 GNU Binutils objdump.c dump_dwarf_section out-of-bounds — BinutilsCWE-125 3.3 Low2025-09-27
CVE-2025-8225 GNU Binutils DWARF Section dwarf.c process_debug_info memory leak — BinutilsCWE-401 3.3 Low2025-07-27
CVE-2025-8224 GNU Binutils BFD Library elf.c bfd_elf_get_str_section null pointer dereference — BinutilsCWE-476 3.3 Low2025-07-27
CVE-2025-7546 GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds write — BinutilsCWE-787 5.3 Medium2025-07-13
CVE-2025-7545 GNU Binutils objcopy.c copy_section heap-based overflow — BinutilsCWE-122 5.3 Medium2025-07-13
CVE-2025-5245 GNU Binutils objdump debug.c debug_type_samep memory corruption — BinutilsCWE-119 5.3 Medium2025-05-27
CVE-2025-5244 GNU Binutils ld elflink.c elf_gc_sweep memory corruption — BinutilsCWE-119 5.3 Medium2025-05-27
CVE-2025-3198 GNU Binutils objdump bucomm.c display_info memory leak — BinutilsCWE-401 3.3 Low2025-04-04
CVE-2025-1182 GNU Binutils ld elflink.c bfd_elf_reloc_symbol_deleted_p memory corruption — BinutilsCWE-119 5.0 Medium2025-02-11
CVE-2025-1181 GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec memory corruption — BinutilsCWE-119 5.0 Medium2025-02-11
CVE-2025-1180 GNU Binutils ld elf-eh-frame.c _bfd_elf_write_section_eh_frame memory corruption — BinutilsCWE-119 3.1 Low2025-02-11
CVE-2025-1179 GNU Binutils ld libbfd.c bfd_putl64 memory corruption — BinutilsCWE-119 5.0 Medium2025-02-11
CVE-2025-1178 GNU Binutils ld libbfd.c bfd_putl64 memory corruption — BinutilsCWE-119 5.6 Medium2025-02-11
CVE-2025-1176 GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow — BinutilsCWE-122 5.0 Medium2025-02-11
CVE-2025-1153 GNU Binutils format.c bfd_set_format memory corruption — BinutilsCWE-119 3.1 Low2025-02-10
CVE-2025-1152 GNU Binutils ld xstrdup.c xstrdup memory leak — BinutilsCWE-401 3.1 Low2025-02-10
CVE-2025-1151 GNU Binutils ld xmemdup.c xmemdup memory leak — BinutilsCWE-401 3.1 Low2025-02-10
CVE-2025-1150 GNU Binutils ld libbfd.c bfd_malloc memory leak — BinutilsCWE-401 3.1 Low2025-02-10
CVE-2025-1149 GNU Binutils ld xmalloc.c xstrdup memory leak — BinutilsCWE-401 3.1 Low2025-02-10
CVE-2025-1148 GNU Binutils ld ldelfgen.c link_order_scan memory leak — BinutilsCWE-401 3.1 Low2025-02-10
CVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflow — BinutilsCWE-120 3.1 Low2025-02-10

This page lists every published CVE security advisory associated with GNU. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.