72 matches found
[SECURITY] Fedora 43 Update: glib2-2.86.2-1.fc43
GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system...
EUVD-2020-17677
Malware in sbrugna...
EUVD-2024-36111
Malicious code in bioql PyPI...
Libxslt 安全漏洞
Libxslt is a Libxslt open source XSLT C library developed for the GNOME project. A security vulnerability exists in Libxslt that stems from a post-release reuse issue when parsing xsl nodes, which could lead to dereferencing of expired pointers and application crashes...
GNOME gvdb gvdb-builder.c gvdb_table_write_contents_async use after free
...
[SECURITY] Fedora 42 Update: glib2-2.84.4-1.fc42
GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system...
编号撤回
Both libsoup and GNOME are products of the GNOME project. libsoup is an HTTP client/server library for GNOME. GNOME is a set of purely free computer software. It is used to provide a graphical desktop environment. This CVE number has been withdrawn...
libsoup 缓冲区错误漏洞
libsoup is a GNOME HTTP client/server library from the GNOME Project. A buffer error vulnerability exists in libsoup that stems from not properly validating multipart HTTP message termination, which could lead to out-of-bounds reads...
libsoup 安全漏洞
libsoup is a GNOME HTTP client/server library from the GNOME Project. A security vulnerability exists in libsoup, which stems from a double release issue in the function soupmessageheadersgetcontentdisposition...
Linux Distros Unpatched Vulnerability : CVE-2020-24977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit...
Important: libgsf
Issue Overview: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows fo...
Amazon Linux 2 : libgsf (ALAS-2024-2681)
The version of libgsf installed on the remote host is prior to 1.14.26-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2681 advisory. An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G...
Mageia: Security Advisory (MGASA-2024-0337)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libgsf packages fix security vulnerabilities
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...
MGASA-2024-0337 Updated libgsf packages fix security vulnerabilities
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...
ROS-20241021-02
GNOME Project G libgsf structured file library vulnerability is related to heap-based integer overflow during processing of sector allocation table. heap-based integers when processing the sector allocation table. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...
Vulnerability in popular PDF reader could lead to arbitrary code execution; Multiple issues in GNOME project
Cisco Talos' Vulnerability Research team recently disclosed six new security vulnerabilities across a range of software, including one in a popular PDF reader that could lead to arbitrary code execution. Foxit PDF Reader, one of the most popular alternatives to Adobe Acrobat, contains a memory...
CVE-2024-36474
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf. A specially crafted file can result in an integer overflow when processing the directory from the file, allowing an out-of-bounds index to be used whe...
CVE-2024-42415
An integer overflow vulnerability was found in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf. A specially crafted file can result in an integer overflow that allows for a heap-based buffer overflow when processing the sector allocation table...
CVE-2024-36474
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...