[SECURITY] Fedora 44 Update: gthumb-3.12.10-7.fc44

gthumb is an application for viewing, editing, and organizing collections of images...

EUVD-2018-10434

Malware in sbrugna...

EUVD-2019-10880

Malware in sbrugna...

EUVD-2020-23955

Malware in sbrugna...

OPENSUSE-SU-2024:10832-1 gthumb-3.12.0-3.1 on GA media

These are all security issues fixed in the gthumb-3.12.0-3.1 package on the GA media of openSUSE Tumbleweed...

RHEL 6 : gthumb (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gthumb: DoS via malformed JPEG image CVE-2020-36427 Note that Nessus has not tested for this issue but has instead...

Ubuntu 16.04 ESM / 18.04 ESM : gThumb vulnerabilities (USN-5681-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5681-1 advisory. It was discovered that gThumb did not properly managed memory under certain circumstances. An attacker could possibly use this issue to cause...

SUSE CVE-2018-18718

An issue was discovered in gThumb through 3.6.2. There is a double-free vulnerability in the addthemesfromdir method in dlg-contact-sheet.c because of two successive calls of gfree, each of which frees the same buffer...

SUSE CVE-2019-20326

A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file...

Ubuntu: Security Advisory (USN-5681-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5680-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 20.04 LTS : gThumb vulnerabilities (USN-5680-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5680-1 advisory. It was discovered that gThumb did not properly managed memory when processing certain image files. If a user were tricked into opening a specially crafte...

USN-5681-1: gThumb vulnerabilities

It was discovered that gThumb did not properly managed memory under certain circumstances. An attacker could possibly use this issue to cause gThumb to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2018-18718 It was discovered that gThumb did not properly manage...

USN-5681-1 gThumb vulnerabilities

It was discovered that gThumb did not properly managed memory under certain circumstances. An attacker could possibly use this issue to cause gThumb to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2018-18718 It was discovered that gThumb did not properly manage...

USN-5680-1 gThumb vulnerabilities

It was discovered that gThumb did not properly managed memory when processing certain image files. If a user were tricked into opening a specially crafted JPEG file, an attacker could possibly use this issue to cause gThumb to crash, resulting in a denial of service, or possibly execute arbitrary...

USN-5680-1: gThumb vulnerabilities

It was discovered that gThumb did not properly managed memory when processing certain image files. If a user were tricked into opening a specially crafted JPEG file, an attacker could possibly use this issue to cause gThumb to crash, resulting in a denial of service, or possibly execute arbitrary...

Mageia: Security Advisory (MGASA-2020-0056)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2019-0039)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

gthumb:stretch is vulnerable to denial of service. A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in GNOME gThumb and Linux Mint Pix allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file...

Debian: Security Advisory (DLA-2749-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...