Lucene search

CVE-2024-6655

🗓️ 16 Jul 2024 15:12:15Reported by redhatType

A flaw in GTK library allows injection of a library into GTK applicatio

Reporter	Title	Published	Views	Family All 119
RedhatCVE	CVE-2024-6655	10 Jul 202414:35	–	redhatcve
Tenable Nessus	SUSE SLES12 Security Update : gtk3 (SUSE-SU-2024:2612-1)	30 Jul 202400:00	–	nessus
Tenable Nessus	SUSE SLED12 / SLES12 Security Update : gtk2 (SUSE-SU-2024:2611-1)	30 Jul 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : gtk3 (EulerOS-SA-2024-2582)	9 Oct 202400:00	–	nessus
Tenable Nessus	CBL Mariner 2.0 Security Update: gtk2 / gtk3 (CVE-2024-6655)	6 Aug 202400:00	–	nessus
Tenable Nessus	RHEL 8 : gtk3 (RHSA-2024:6963)	24 Sep 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gtk3 (SUSE-SU-2025:0031-1)	8 Jan 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : gtk3 (EulerOS-SA-2024-2831)	8 Nov 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : gtk3 (SUSE-SU-2024:2898-1)	14 Aug 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : gtk3 (ALAS-2024-2602)	17 Aug 202400:00	–	nessus

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.24.43",
        "versionType": "semver"
      }
    ],
    "packageName": "gtk",
    "collectionURL": "https://www.gtk.org/",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk3",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.22.30-12.el8_10",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream",
      "cpe:/a:redhat:enterprise_linux:8::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk3",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:3.24.31-5.el9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::crb",
      "cpe:/a:redhat:enterprise_linux:9::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk2",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk2",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk3",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gimp:flatpak/gtk2",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk2",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "inkscape:flatpak/gtk2",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk2",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "gtk4",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2024-6655
access	www.access.redhat.com/errata/RHSA-2024:9184
access	www.access.redhat.com/errata/RHSA-2024:6963
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
gitlab	www.gitlab.gnome.org/GNOME/gtk/-/merge_requests/7361/diffs
openwall	www.openwall.com/lists/oss-security/2024/09/09/1
openwall	www.openwall.com/lists/oss-security/2024/09/09/1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Jul 2024 15:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS37

EPSS0.00044

SSVC

CWE-94