gnu general public license

Top products

The 15 most recently published vulnerabilities affecting gnu general public license.

• CVE-2026-45185Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client sends a TLS close_notify mid-body during a...9.8May 12, 2026
• CVE-2026-4046iconv crash due to assertion failure with untrusted input7.5Mar 30, 2026
• CVE-2026-3441Binutils: gnu binutils: information disclosure via specially crafted xcoff object file6.1Mar 15, 2026
• CVE-2026-3442Binutils: gnu binutils: information disclosure or denial of service via out-of-bounds read in bfd linker6.1Mar 15, 2026
• CVE-2025-69648GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes...6.2Mar 9, 2026
• CVE-2025-69647GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause rea...6.2Mar 9, 2026
• CVE-2025-69652GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort (SIGABRT) when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete sta...6.2Mar 6, 2026
• CVE-2025-69650GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dump_relocations may return ...7.5Mar 6, 2026
• CVE-2025-69649GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null ...7.5Mar 6, 2026
• CVE-2025-69644An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handli...5.0Mar 6, 2026
• CVE-2026-0915getnetbyaddr and getnetbyaddr_r leak stack contents to DNS resovler7.5Jan 15, 2026
• CVE-2025-14242Vsftpd: vsftpd: denial of service via integer overflow in ls command parameter parsing6.5Jan 14, 2026
• CVE-2025-67896Exim before 4.99.1, with certain non-default rate-limit configurations, allows a remote heap-based buffer overflow because database records are cast directly to internal structures without validation.7.0Dec 14, 2025
• CVE-2025-11840GNU Binutils ldmisc.c vfinfo out-of-bounds3.3Oct 16, 2025
• CVE-2025-11839GNU Binutils prdbg.c tg_tag_type return value3.3Oct 16, 2025