PT-2026-41084

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description A use after free issue in GTK allows a remote attacker to execute arbitrary code by inducing the user to open a crafted HTML page. Recommendations Update to version 148.0.7778.168 or...

[SECURITY] Fedora 41 Update: webkitgtk-2.50.1-1.fc41

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

[SECURITY] Fedora 42 Update: webkitgtk-2.50.0-1.fc42

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

Moderate: Red Hat Security Advisory: gdk-pixbuf2 security update

An update for gdk-pixbuf2 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

gtk3: gtk2: Library injection from CWD

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

OESA-2024-1886 gtk2 security update

GTK+ is a library for creating graphical user interfaces. The library is created in C programming language. The GTK+ is also called the GIMP Toolkit. Originally, the library was created while developing the GIMP image manipulation program. Security Fixes: A flaw was found in the GTK library. Unde...

AZL-43377 CVE-2024-6655 affecting package gtk3 for versions less than 3.24.28-10

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

AZL-43384 CVE-2024-6655 affecting package gtk2 for versions less than 2.24.32-12

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

AZL-43387 CVE-2024-6655 affecting package gtk3 for versions less than 3.24.28-10

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

SUSE CVE-2007-0010

The GdkPixbufLoader function in GIMP ToolKit GTK+ in GTK 2 gtk2 before 2.4.13 allows context-dependent attackers to cause a denial of service crash via a malformed image file...

SUSE CVE-2014-5116

The cairoimagesurfacegetdata function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service NULL pointer dereference via a large string...

Important: Red Hat Security Advisory: spice and spice-gtk security update

An update for spice and spice-gtk is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Oracle Linux 6 : spice-gtk (ELSA-2020-0471)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0471 advisory. 0.26-8.2 - Fix insufficient encoding checks for LZ Resolves: rhbz1598651 0.26-8.1 - Fix flexible array buffer overflow Resolves: rhbz1596008 Tenable has extract...

spice security update

CentOS Errata and Security Advisory CESA-2018:2732 An update for spice-gtk and spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives ...

Moderate: Red Hat Bug Fix Advisory: GTK+ bug fix update

An update for GTK+ is now available for Red Hat Enterprise Linux 7. The GTK+ packages contain the GIMP ToolKit GTK+, a library for creating graphical user interfaces for the X Window System. For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes...

libgtk2-perl memory corruption vulnerability

libgtk2-perl is the Perl interface to the Gimp Toolkit library for the 2.x series. libgtk2-perl fails to properly free memory being used by GTK+, which can lead to denial of service or execution of arbitrary code...

[SECURITY] [DLA 161-1] libgtk2-perl security update

Package : libgtk2-perl Version : 2:1.222-1+deb6u1 It was discovered that libgtk2-perl, a Perl interface to the 2.x series of the Gimp Toolkit library, incorrectly frees memory which GTK+ still holds onto and might access later, leading to denial of service application crash or, potentially, to...

DLA-161-1 libgtk2-perl - security update

Bulletin has no description...

DSA-3173-1 libgtk2-perl - security update

Bulletin has no description...

USN-2475-1 gtk+3.0 update

Clemens Fries discovered that GTK+ allowed bypassing certain screen locks by using the menu key. An attacker with physical access could possibly use this flaw to gain access to a locked session...