PT-2026-41084

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description A use after free issue in GTK allows a remote attacker to execute arbitrary code by inducing the user to open a crafted HTML page. Recommendations Update to version 148.0.7778.168 or...

[SECURITY] Fedora 41 Update: webkitgtk-2.50.1-1.fc41

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

[SECURITY] Fedora 42 Update: webkitgtk-2.50.0-1.fc42

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

Moderate: Red Hat Security Advisory: gdk-pixbuf2 security update

An update for gdk-pixbuf2 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

gtk3: gtk2: Library injection from CWD

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

The vulnerability of the library used for creating graphical user interfaces in GTK (GIMP Toolkit) arises from improper code generation. This allows attackers to escalate their privileges.

The vulnerability of the library used for creating graphical user interfaces in GTK GIMP Toolkit is related to improper code generation. Exploiting this vulnerability can allow an attacker to increase their privileges...

OESA-2024-1886 gtk2 security update

GTK+ is a library for creating graphical user interfaces. The library is created in C programming language. The GTK+ is also called the GIMP Toolkit. Originally, the library was created while developing the GIMP image manipulation program. Security Fixes: A flaw was found in the GTK library. Unde...

AZL-43377 CVE-2024-6655 affecting package gtk3 for versions less than 3.24.28-10

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

AZL-43384 CVE-2024-6655 affecting package gtk2 for versions less than 2.24.32-12

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

AZL-43387 CVE-2024-6655 affecting package gtk3 for versions less than 3.24.28-10

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

SUSE CVE-2007-0010

The GdkPixbufLoader function in GIMP ToolKit GTK+ in GTK 2 gtk2 before 2.4.13 allows context-dependent attackers to cause a denial of service crash via a malformed image file...

SUSE CVE-2014-5116

The cairoimagesurfacegetdata function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service NULL pointer dereference via a large string...

Important: Red Hat Security Advisory: spice and spice-gtk security update

An update for spice and spice-gtk is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Oracle Linux 6 : spice-gtk (ELSA-2020-0471)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0471 advisory. 0.26-8.2 - Fix insufficient encoding checks for LZ Resolves: rhbz1598651 0.26-8.1 - Fix flexible array buffer overflow Resolves: rhbz1596008 Tenable has extract...

spice security update

CentOS Errata and Security Advisory CESA-2018:2732 An update for spice-gtk and spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives ...

Moderate: Red Hat Bug Fix Advisory: GTK+ bug fix update

An update for GTK+ is now available for Red Hat Enterprise Linux 7. The GTK+ packages contain the GIMP ToolKit GTK+, a library for creating graphical user interfaces for the X Window System. For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes...

libgtk2-perl memory corruption vulnerability

libgtk2-perl is the Perl interface to the Gimp Toolkit library for the 2.x series. libgtk2-perl fails to properly free memory being used by GTK+, which can lead to denial of service or execution of arbitrary code...

[SECURITY] [DLA 161-1] libgtk2-perl security update

Package : libgtk2-perl Version : 2:1.222-1+deb6u1 It was discovered that libgtk2-perl, a Perl interface to the 2.x series of the Gimp Toolkit library, incorrectly frees memory which GTK+ still holds onto and might access later, leading to denial of service application crash or, potentially, to...

DLA-161-1 libgtk2-perl - security update

Bulletin has no description...

DSA-3173-1 libgtk2-perl - security update

Bulletin has no description...