Known Vulnerabilities for products from Gnu
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Gnu".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33845 json | A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an intege... | Not Provided | 2026-04-30 | 2026-05-05 |
| CVE-2026-32772 json | telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from clients via NEW_ENVIRON SEND ... | Not Provided | 2026-03-16 | 2026-05-05 |
| CVE-2026-32746 json | telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption handl... | Not Provided | 2026-03-13 | 2026-05-05 |
| CVE-2026-6861 json | A flaw was found in GNU Emacs. This vulnerability, a memory corruption issue, occurs when Emacs processes specially crafted S... | Not Provided | 2026-04-22 | 2026-05-06 |
| CVE-2026-6238 json | The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to validate th... | Not Provided | 2026-04-28 | 2026-05-04 |
| CVE-2026-5928 json | Calling the ungetwc function on a FILE stream with wide characters encoded in a character set that has overlaps between its s... | Not Provided | 2026-04-20 | 2026-04-23 |
| CVE-2026-5704 json | A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidde... | Not Provided | 2026-04-06 | 2026-04-22 |
| CVE-2026-5450 json | Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 ... | Not Provided | 2026-04-20 | 2026-04-23 |
| CVE-2026-5435 json | The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the... | Not Provided | 2026-04-28 | 2026-05-05 |
| CVE-2026-4438 json | Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU ... | Not Provided | 2026-03-20 | 2026-04-07 |
| CVE-2026-4437 json | Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU ... | Not Provided | 2026-03-20 | 2026-04-07 |
| CVE-2026-4046 json | The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inp... | Not Provided | 2026-03-30 | 2026-04-20 |
| CVE-2026-3904 json | Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library versi... | Not Provided | 2026-03-11 | 2026-04-09 |
| CVE-2026-3833 json | A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints`... | Not Provided | 2026-04-30 | 2026-05-07 |
| CVE-2026-3832 json | A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certi... | Not Provided | 2026-04-30 | 2026-05-11 |
| CVE-2026-1858 json | wget2 accepts a server certificate with incorrect Key Usage (KU) or Extended Key Usage (EKU). If the attackers compromise a c... | Not Provided | 2026-04-29 | 2026-05-05 |
| CVE-2026-1584 json | A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ... | Not Provided | 2026-04-09 | 2026-05-03 |
| CVE-2025-61662 json | A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where t... | Not Provided | 2025-11-18 | 2026-04-30 |
| CVE-2025-32990 json | A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool u... | Not Provided | 2025-07-10 | 2026-04-20 |
| CVE-2025-32989 json | A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certifica... | Not Provided | 2025-07-10 | 2026-05-12 |
Known software with vulnerabilities from Gnu
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Gnu | A2ps | - |
| Application | Gnu | Adns | 1.5.2 |
| Application | Gnu | Anubis | - |
| Application | Gnu | Aspell | - |
| Application | Gnu | Aspell Dictionary | 0.50-2 |
| Application | Gnu | Automake | 1.0 |
| Application | Gnu | Bash | - |
| Application | Gnu | Bc | 1.03 |
| Application | Gnu | Binutils | - |
| Application | Gnu | Bison | 3.5.4 |
| Application | Gnu | Cfengine | - |
| Application | Gnu | Cflow | - |
| Application | Gnu | Chess | - |
| Application | Gnu | Coreutils | - |
| Application | Gnu | Cpio | - |
| Application | Gnu | Cvs | 1.12.1 |
| Application | Gnu | Data Display Debugger | - |
| Application | Gnu | Ed | - |
| Application | Gnu | Emacs | - |
| Application | Gnu | Enscript | - |