Gentoo Packages
Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
  • Home
  • Packages
  • Maintainers
  • USE flags
  • Architectures
  • About

Gentoo Project
Toolchain Project

Packages 57 Stabilization 9 Outdated 2 Pull requests 11 Bugs 285 Security 10 Changelog

Security Bug Reports

  • sys-devel/binutils: Multiple vulnerabilities
    661154 - Assigned to Gentoo Security
  • sys-libs/glibc: Multiple vulnerabilities (CVE-2019-{1010022,1010023,1010024})
    711318 - Assigned to Gentoo Security
  • <sys-libs/musl-1.2.1-r1: wcsnrtombs destination buffer overflow (CVE-2020-28928)
    755695 - Assigned to Gentoo Security
  • <sys-devel/gcc-12.1.0: Unicode "bidirectional override" (CVE-2021-42574)
    821220 - Assigned to Gentoo Security
  • <app-misc/pax-utils-1.3.8: heap overflow in ar_next (paxinc.c:96:20)
    890577 - Assigned to Gentoo Security
  • sys-devel/gcc: Stack protection and stack clash protection ineffective for VLAs on arm64 (-fstack-protector* and -fstack-clash-protection)
    914070 - Assigned to Gentoo Security
  • sys-libs/glibc: Out of bounds read and write in qsort()
    923355 - Assigned to Gentoo Security
  • <sys-libs/glibc-{2.38-r13,2.39-r4}: Multiple vulnerabilities in nscd
    930667 - Assigned to Gentoo Security
  • <sys-libs/musl-{1.2.3-r10,1.2.4-r4,1.2.5-r3}: vulnerability in iconv that can result in out-of-bounds memory writes
    949712 - Assigned to Gentoo Security
  • <sys-libs/glibc-2.40-r10: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
    956996 - Assigned to Gentoo Security

Contact Information

Please file new vulnerability reports on Gentoo Bugzilla and assign them to the Gentoo Security product and Vulnerabilities component.
© 2001–2025 Gentoo Authors
Gentoo is a trademark of the Gentoo Foundation, Inc. and of Förderverein Gentoo e.V. The contents of this document, unless otherwise expressly stated, are licensed under the CC-BY-SA-4.0 license. The Gentoo Name and Logo Usage Guidelines apply.
Contact
v1.0.3