CVE-2014-7169 — Bash Shellshock secondary injection via function-name parser interpolation

CVE-2023-1579: Heap overflow in binutils BFD COFF relocation handling

CVE-2021-3487: OOB read in binutils readelf fetch_indexed_string (DWARF .debug_str_offsets)

CVE-2022-38126: memory leak in binutils display_debug_abbrev

CVE-2017-8421: binutils objdump unbounded memory allocation via crafted ELF e_phnum / sh_size

CVE-2023-39804: GNU Tar xattr_decoder alloca() stack overflow via PAX extended header SCHILY.xattr value

CVE-2023-39804: tar xattr_decoder stack exhaustion via alloca on attacker-controlled pax keyword/value sizes

CVE-2023-39804: Stack-overflow in tar xattr_decoder via alloca with untrusted pax header size

CVE-2016-6321: Path Traversal in tar --strip-components

CVE-2019-5953: wget 1.20.1 heap buffer overflow in reencode_escapes() URL handling

CVE-2017-13089: wget skip_short_body stack overflow via negative chunked transfer encoding size

CVE-2017-13089: Stack-overflow in wget HTTP chunked transfer encoding parsing

CVE-2020-15900: Integer Underflow in Ghostscript rsearch Operator

CVE-2023-36664: Command Injection in Ghostscript Pipe Device

CVE-2023-38545: heap buffer overflow in curl SOCKS5 proxy via async state machine socks5_resolve_local bypass

CVE-2023-38545: Heap overflow in curl SOCKS5 proxy response handling

CVE-2014-7169 Bash Shellshock Secondary Injection via Function Definition Names

CVE-2014-6271 Shellshock: bash parse_and_execute consumes trailing commands after function-definition env import

CVE-2014-6271 (Shellshock) - Command Injection via Function Definition Environment Variables in Bash 4.3

CVE-2014-6271 Shellshock: Bash command injection via function import from environment variables