CVE-2025-65409

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service DoS via inputting an empty value as a password...

CVE-2025-65409

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service DoS via inputting an empty value as a password...

GNU Recutils 安全漏洞

GNU Recutils is a tool and library for accessing the recfiles plain text database from the US GNU community. A security vulnerability exists in GNU Recutils that stems from a divide-by-zero error in the encryption/decryption routines, which could lead to a denial-of-service attack...

CVE-2025-65411

CVE-2025-65411 affects GNU Unrtf v0.21.10. A NULL pointer dereference in the src/path.c component can cause a Denial of Service when a crafted payload is injected into the search_path parameter. The Connected documents confirm the vulnerability but do not provide concrete exploit details beyond t...

CVE-2025-65409

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service DoS via inputting an empty value as a password...

Slackware Linux 15.0 / current gnupg2 Multiple Vulnerabilities (SSA:2025-364-01)

The version of gnupg2 installed on the remote host is prior to 2.2.52 / 2.5.16. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-364-01 advisory. New gnupg2 packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...

Linux Distros Unpatched Vulnerability : CVE-2025-65411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference in the src/path.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service DoS via injecting a crafted payload...

CVE-2025-65411

A NULL pointer dereference in the src/path.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service DoS via injecting a crafted payload into the searchpath parameter...

CVE-2025-65409

GNU Recutils v1.9 contains a divide-by-zero in its encryption/decryption routines that can be triggered by supplying an empty password, resulting in denial of service. Publicly listed advisories indicate the affected component is gnu-recutils (version 1.9); OpenSUSE reports a GA fix in gnu-recuti...

EUVD-2025-205616

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-69194

A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially...

CVE-2025-68972

A flaw was found in GnuPG. An adversary can exploit this vulnerability by crafting a signed message that includes a form feed character \f at the end of a plaintext line. This allows the adversary to append additional, unsigned text to the message while the signature verification still reports...

In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.

...

GNU BinUtils 安全漏洞

GNU BinUtils is a collection of programming tools for working with binary files from the US GNU community. A security vulnerability exists in GNU BinUtils version 2.26, which stems from the improper handling of specially crafted PE files by the dprintcompinner function in the cp-demangle.c file,...

PT-2025-53758

Name of the Vulnerable Software and Affected Versions BinUtils version 2.26 Description A buffer overflow issue exists in the gnu special function within the cplus-dem.c file. This can lead to a denial of service through the processing of specially crafted PE files. Recommendations Update to a...

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

EUVD-2025-205519

In GnuPG through 2.4.8, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input...

CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...