Lucene search
K

20 matches found

AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.2 views

Astra Linux – Vulnerability in gtk+3.0, gtk+2.0

A flaw was discovered in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...

7CVSS7.1AI score0.00464EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/07/17 12:0 a.m.12 views

Ubuntu: Security Advisory (USN-6899-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.3AI score0.00464EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/07/16 1:3 p.m.373 views

USN-6899-1: GTK vulnerability

It was discovered that GTK would attempt to load modules from the current directory, contrary to expectations. If users started GTK applications from shared directories, a local attacker could use this issue to execute arbitrary code, and possibly escalate privileges...

7CVSS7AI score0.00464EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2014-0004)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.03197EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2014-0374)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.7AI score0.00331EPSS
Exploits0References9
Veracode
Veracode
added 2018/09/03 5:28 a.m.25 views

Demarshalling With Improper Bounds Check

libspice-client-glib-2.0.so, libspice-client-gtk-2.0.so, libspice-client-gtk-3.0.so are vulnerable to demarshalling with improper bounds check. The vulnerability exists due to the lack of check where demarshalling could happen at an item position beyond the message end, leading to a denial of...

8.8CVSS8.3AI score0.03934EPSS
Exploits0References11Affected Software3
OpenVAS
OpenVAS
added 2016/02/16 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-2898-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.04633EPSS
Exploits0References2
securityvulns
securityvulns
added 2015/04/19 12:0 a.m.50 views

[ MDVSA-2015:162 ] gtk+3.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:162 http://www.mandriva.com/en/support/security/ Package : gtk+3.0 Date : March 29, 2015 Affected: Business Server 2.0 Problem Description: Updated gtk+3.0 packages fix security vulnerability: Clemens Fries...

7.2CVSS6AI score0.00331EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.29 views

Mandriva Linux Security Advisory : gtk+3.0 (MDVSA-2015:162)

Updated gtk+3.0 packages fix security vulnerability : Clemens Fries reported that, when using Cinnamon, it was possible to bypass the screensaver lock. An attacker with physical access to the machine could use this flaw to take over the locked desktop session CVE-2014-1949. This was fixed by...

7.2CVSS5.3AI score0.00331EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.10 views

Ubuntu: Security Advisory (USN-2475-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
Mageia
Mageia
added 2014/09/09 9:34 a.m.45 views

Updated gtk+3.0 packages fix CVE-2014-1949

Updated gtk+3.0 packages fix security vulnerability: Clemens Fries reported that, when using Cinnamon, it was possible to bypass the screensaver lock. An attacker with physical access to the machine could use this flaw to take over the locked desktop session CVE-2014-1949. This was fixed by...

7.2CVSS6.2AI score0.00331EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.31 views

openSUSE Security Update : emacs and depending packages (openSUSE-SU-2012:1348-1)

This update fixes the following issues for emacs, emacs-w3, gnuplot and ddskk: emacs : - Add fix for bnc775993 which disable arbitrary lisp code execution when 'enable-local-variables' is set to ':safe' CVE-2012-3479 - Add fix for bnc780653 to allow emacs to parse tar archives with PAX extended...

6.8CVSS5.9AI score0.03804EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/03/20 12:0 a.m.19 views

Ubuntu Update for gtk+3.0 USN-2149-2

Check for the Version of gtk+3.0 OpenVAS Vulnerability Test $Id: gbubuntuUSN21492.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for gtk+3.0 USN-2149-2 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...

4.3CVSS6.4AI score0.03197EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/03/20 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-2149-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.03197EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/03/18 12:0 a.m.22 views

Ubuntu 12.04 LTS / 12.10 : gtk+3.0 update (USN-2149-2)

USN-2149-1 fixed a vulnerability in librsvg. This update provides a compatibility fix for GTK+ to work with the librsvg security update. It was discovered that librsvg would load XML external entities by default. If a user were tricked into viewing a specially crafted SVG file, an attacker could...

4.3CVSS5.7AI score0.03197EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2014/03/17 11:55 a.m.45 views

USN-2149-2: GTK+ update

USN-2149-1 fixed a vulnerability in librsvg. This update provides a compatibility fix for GTK+ to work with the librsvg security update. Original advisory details: It was discovered that librsvg would load XML external entities by default. If a user were tricked into viewing a specially crafted S...

4.3CVSS5.5AI score0.03197EPSS
Exploits0
securityvulns
securityvulns
added 2014/01/29 12:0 a.m.46 views

[ MDVSA-2014:009 ] librsvg

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:009 http://www.mandriva.com/en/support/security/ Package : librsvg Date : January 17, 2014 Affected: Business Server 1.0, Enterprise Server 5.0 Problem Description: Updated librsvg and gtk+3.0 packages fix...

4.3CVSS6.3AI score0.03197EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/01/20 12:0 a.m.17 views

Mandriva Linux Security Advisory : librsvg (MDVSA-2014:009)

Updated librsvg and gtk+3.0 packages fix security vulnerability : librsvg before version 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference CVE-2013-1881. For Business Server 1 gtk+3.0 has be...

4.3CVSS5.2AI score0.03197EPSS
Exploits0References2
Mageia
Mageia
added 2014/01/06 1:8 a.m.25 views

Updated librsvg and gtk+3.0 packages fix security vulnerability

librsvg before version 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference CVE-2013-1881. gtk+3.0 has been patched to cope with the changes in SVG loading due to the fix in librsvg...

4.3CVSS5.3AI score0.03197EPSS
Exploits0References2
OSV
OSV
added 2014/01/06 1:8 a.m.8 views

MGASA-2014-0004 Updated librsvg and gtk+3.0 packages fix security vulnerability

librsvg before version 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference CVE-2013-1881. gtk+3.0 has been patched to cope with the changes in SVG loading due to the fix in librsvg...

4.3CVSS6.4AI score0.03197EPSS
Exploits0References3
Rows per page
Query Builder