Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2005:499
HistoryJun 13, 2005 - 3:05 p.m.

gedit security update

2005-06-1315:05:00
CentOS Project
lists.centos.org
48

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

77.3%

JSON

CentOS Errata and Security Advisory CESA-2005:499

gEdit is a small text editor designed specifically for the GNOME GUI desktop.

A file name format string vulnerability has been discovered in gEdit. It is
possible for an attacker to create a file with a carefully crafted name
which, when the file is opened, executes arbitrary instructions on a
victim’s machine. Although it is unlikely that a user would manually open a
file with such a carefully crafted file name, a user could, for example, be
tricked into opening such a file from within an email client. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2005-1686 to this issue.

Users of gEdit should upgrade to this updated package, which contains a
backported patch to correct this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-June/073981.html
https://lists.centos.org/pipermail/centos-announce/2005-June/073982.html
https://lists.centos.org/pipermail/centos-announce/2005-June/073991.html
https://lists.centos.org/pipermail/centos-announce/2005-June/073992.html
https://lists.centos.org/pipermail/centos-announce/2005-June/073999.html
https://lists.centos.org/pipermail/centos-announce/2005-June/074005.html
https://lists.centos.org/pipermail/centos-announce/2005-June/074010.html

Affected packages:
gedit
gedit-devel

Upstream details at:
https://access.redhat.com/errata/RHSA-2005:499

Related

cve 1
openvas 8
nessus 13
redhat 1
gentoo 1
debian 2
ubuntu 1
debiancve 1
osv 1
ubuntucve 1
cert 1
freebsd 1
suse 1
cve
cve
CVE-2005-1686
2005-05-20 04:00:00
openvas
openvas
SLES9: Security update for gedit
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200506-09 (gedit)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200506-09 (gedit)
2008-09-24 00:00:00
nessus
nessus
Debian DSA-753-1 : gedit - format string
2005-07-12 00:00:00
Solaris 10 (sparc) : 143739-01
2018-03-12 00:00:00
Solaris 10 (x86) : 143740-01
2018-03-12 00:00:00
redhat
redhat
(RHSA-2005:499) gedit security update
2005-06-13 00:00:00
gentoo
gentoo
gedit: Format string vulnerability
2005-06-11 00:00:00
debian
debian
[SECURITY] [DSA 753-1] New gedit packages fix denial of service
2005-07-12 09:58:26
[SECURITY] [DSA 753-1] New gedit packages fix denial of service
2005-07-12 00:00:00
ubuntu
ubuntu
gedit vulnerability
2005-06-09 00:00:00
debiancve
debiancve
CVE-2005-1686
2005-05-20 04:00:00
osv
osv
gedit - format string
2005-07-12 00:00:00
ubuntucve
ubuntucve
CVE-2005-1686
2005-05-20 00:00:00
cert
cert
GNOME gedit contains format string vulnerability
2005-08-12 00:00:00
freebsd
freebsd
gedit -- format string vulnerability
2005-05-20 00:00:00
suse
suse
race condition, arbitrary code execution in sudo
2005-06-24 12:44:43

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

77.3%

JSON
Related for CESA-2005:499
cve1openvas8nessus13redhat1gentoo1debian2ubuntu1debiancve1osv1ubuntucve1cert1freebsd1suse1