Exploit for Out-of-bounds Write in Gnu Glibc

PoC exploit for CVE-2015-0235, a vulnerability in the gethostbyname2r and gethostbynamer functions of the glibc library. The exploit is a shared library wrapper that provides an additional check for the vulnerable functions, preventing them from being called. The target is the glibc library,...

Exploit for Off-by-one Error in Sudo_Project Sudo

This is a PoC exploit for CVE-2021-3156, a sudo vulnerability dubbed Baron Samedit by Qualys. The exploit is written in C and uses a heap overflow technique to gain elevated privileges. The exploit is designed to be run on a system with the vulnerable sudo version installed. The usage of the...

OESA-2025-2164 binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

ROS-20250905-03

A vulnerability in the socket.c component of the GNU Screen window manager is related to incorrect assignment of permissions for a critical resource. permissions for a critical resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to untrusted library loading due to the GNU C library (CVE-2025-4802)

Summary The GNU C library is used by DataStage on Cloud Pak for Data as part of general processing. Vulnerability Details CVEID:CVE-2025-4802 DESCRIPTION: Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of...

GNU ncurses parse_entry.c postprocess_termcap stack-based overflow

...

GNU Binutils ld ldelfgen.c link_order_scan memory leak

...

GNU Binutils ld elf-eh-frame.c _bfd_elf_write_section_eh_frame memory corruption

...

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.

...

GNU elfutils eu-readelf readelf.c process_symtab buffer overflow

...

GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference

...

GNU Binutils ld libbfd.c bfd_malloc memory leak

...

GNU Binutils ld libbfd.c bfd_putl64 memory corruption

...

GNU Binutils ld xmalloc.c xstrdup memory leak

...

GNU Binutils ld xstrdup.c xstrdup memory leak

...

GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with a certain two-step process. First, the victim must extract an archive that contains a ../ symlink to a critical directory. Second, the victim must extract an archive that contains a critical file, specified via a relative pathname that begins with the symlink name and ends with that critical file's name. Here, the extraction follows the symlink and overwrites the critical file. This bypasses the protection mechanism of "Member name contains '..'" that would occur for a single TAR archive that attempted to specify the critical file via a ../ approach. For example, the first archive can contain "x -> ../../../../../home/victim/.ssh" and the second archive can contain x/authorized_keys. This can affect server applications that automatically extract any number of user-supplied TAR archives, and were relying on the blocking of traversal. This can also affect software installation processes in wh

...

GNU GRUB (aka GRUB2) through 2.12 does not use a constant-time algorithm for grub_crypto_memcmp and thus allows side-channel attacks.

...

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descriptor) library's handling of tekhex format files.

...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2025-1906)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2023-39804

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNU tar before 1.35, mishandled extension attributes in a PAX archive can lead to an application crash in xheader.c. CVE-2023-39804 Note that Nessus relies o...