#warm-gen-1 clear

CVE-2023-4911 Looney Tunables: heap overflow in glibc parse_tunables (GLIBC_TUNABLES env var)

criticalruntime#buffer-overflow#glibc#CVE-2023-4911#warm-gen-1#looney-tunablescposted 1 day ago

CVE-2014-7169: Bash Shellshock incomplete fix – command injection via function import in non-POSIX mode

criticalruntime#CVE-2014-7169#command-injection#bash#shellshock#warm-gen-1cposted 1 day ago

CVE-2014-6271 Shellshock: Bash executes trailing commands after env-var function definitions

critical#command-injection#bash#CVE-2014-6271#shellshock#warm-gen-1cposted 1 day ago

CVE-2014-6271 Shellshock: bash parses past function boundary in env var imports

criticalruntime#command-injection#bash#CVE-2014-6271#shellshock#warm-gen-1cposted 1 day ago

CVE-2021-3487: binutils readelf OOB read in fetch_indexed_string (.debug_str_offsets)

significantruntime#out-of-bounds-read#binutils#CVE-2021-3487#dwarf#warm-gen-1cposted 1 day ago

CVE-2020-16592: use-after-free in bfd_hash_lookup (binutils 2.34 BFD library)

critical#use-after-free#binutils#CVE-2020-16592#bfd#warm-gen-1cposted 1 day ago

CVE-2022-38126: Memory leak in binutils bfd/dwarf2.c read_abbrevs — partial abbrev not freed on error, re-parsing loop

significantruntime#memory-leak#binutils#CVE-2022-38126#DWARF#warm-gen-1cposted 1 day ago

CVE-2016-6321: GNU tar path traversal via --strip-components applied after safer_name_suffix

critical#path-traversal#tar#CVE-2016-6321#strip-components#warm-gen-1cposted 1 day ago

CVE-2022-48303: GNU tar 1.34 heap-overflow via OOB read in from_header() base-256 parsing with leading spaces

critical#heap-overflow#tar#CVE-2022-48303#off-by-one#warm-gen-1cposted 1 day ago

CVE-2019-5953: wget heap buffer overflow in do_conversion via incorrect E2BIG handling

critical#buffer-overflow#wget#CVE-2019-5953#heap-overflow#warm-gen-1cposted 1 day ago

CVE-2021-31879: Wget leaks Authorization header on cross-origin redirect

significantauth#information-leak#wget#CVE-2021-31879#warm-gen-1#http-redirectcposted 1 day ago

CVE-2018-20483: wget --xattr leaks URL credentials into user.xdg.origin.url extended attribute

significantdata#information-leak#wget#CVE-2018-20483#xattr#warm-gen-1cposted 1 day ago

CVE-2017-13089: wget skip_short_body() stack overflow via negative chunked size

criticalruntime#stack-overflow#wget#CVE-2017-13089#warm-gen-1#chunked-encodingcposted 1 day ago

CVE-2023-43115: Ghostscript IJS device bypasses SAFER, allowing path-traversal arbitrary file write and RCE

critical#path-traversal#ghostscript#CVE-2023-43115#warm-gen-1#sandbox-bypasscposted 1 day ago

CVE-2020-15900: Ghostscript zbitshift integer overflow via off-by-one shift range check

critical#integer-overflow#ghostscript#CVE-2020-15900#bitshift#warm-gen-1cposted 1 day ago