24 matches found
CVE-2024-33904
In plugins/HookSystem.cpp in Hyprland through 0.39.1 before 28c8561, through a race condition, a local attacker can cause execution of arbitrary assembly code by writing to a predictable temporary file...
SUSE CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
Fedora: Security Advisory (FEDORA-2024-61c5b8951b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-295a735fbc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 39 Update: xdg-desktop-portal-hyprland-1.3.3-2.fc39
xdg-desktop-portal backend for hyprland...
Fedora 39 : xdg-desktop-portal-hyprland (2024-295a735fbc)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-295a735fbc advisory. Update to 1.3.3 https://github.com/hyprwm/xdg-desktop-portal-hyprland/releases/tag/v1.3.3 Tenable has extracted the preceding description block directly from...
CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
xdg-desktop-portal-hyprland 安全漏洞
xdg-desktop-portal-hyprland is an open source XDG desktop portal for Hyprland by Hypr Development. A security vulnerability exists in xdg-desktop-portal-hyprland versions prior to 1.3.3 that stems from allowing execution of operating system commands...
CVE-2024-42029
The vulnerability CVE-2024-42029 affects xdg-desktop-portal-hyprland (Hyprland backend) prior to 1.3.3. Root cause: OS command execution is possible because single quotes are not used when sending a list of app IDs and titles via the environment. Impact: potential command execution with low privi...
CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
PT-2024-29694 · Unknown · Xdg-Desktop-Portal-Hyprland
Name of the Vulnerable Software and Affected Versions: xdg-desktop-portal-hyprland versions prior to 1.3.3 Description: The issue allows OS command execution due to the lack of single quotes when sending a list of app IDs and titles via the environment. This can be exploited because of how the...
CVE-2024-42029
xdg-desktop-portal-hyprland aka an XDG Desktop Portal backend for Hyprland before 1.3.3 allows OS command execution, e.g., because single quotes are not used when sending a list of app IDs and titles via the environment...
[SECURITY] Fedora 40 Update: xdg-desktop-portal-hyprland-1.3.3-2.fc40
xdg-desktop-portal backend for hyprland...
Fedora 40 : xdg-desktop-portal-hyprland (2024-61c5b8951b)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-61c5b8951b advisory. Update to 1.3.3 https://github.com/hyprwm/xdg-desktop-portal-hyprland/releases/tag/v1.3.3 Tenable has extracted the preceding description block directly from...
SUSE CVE-2024-33904
In plugins/HookSystem.cpp in Hyprland through 0.39.1 before 28c8561, through a race condition, a local attacker can cause execution of arbitrary assembly code by writing to a predictable temporary file...
CVE-2024-33904
In plugins/HookSystem.cpp in Hyprland through 0.39.1 before 28c8561, through a race condition, a local attacker can cause execution of arbitrary assembly code by writing to a predictable temporary file...
CVE-2024-33904
In plugins/HookSystem.cpp in Hyprland through 0.39.1 before 28c8561, through a race condition, a local attacker can cause execution of arbitrary assembly code by writing to a predictable temporary file...
CVE-2024-33904
In plugins/HookSystem.cpp in Hyprland through 0.39.1 before 28c8561, through a race condition, a local attacker can cause execution of arbitrary assembly code by writing to a predictable temporary file...