libgsf: Multiple Vulnerabilities

Background The GNOME Structured File Library is an I/O library that can read and write common file types and handle structured formats that provide file-system-in-a-file semantics. Description Multiple vulnerabilities have been discovered in libgsf. Please review the CVE identifiers referenced...

GLSA-202501-07 : libgsf: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202501-07 libgsf: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libgsf. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly fro...

EulerOS 2.0 SP8 : libgsf (EulerOS-SA-2025-1125)

According to the versions of the libgsf package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf...

Fedora 41 : libgsf (2024-ff08c2b41a)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-ff08c2b41a advisory. Fixes for memory vulnerabilities. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libgsf (SUSE-SU-2024:3920-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3920-1 advisory. - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282...

Amazon Linux 2 : libgsf (ALAS-2024-2681)

The version of libgsf installed on the remote host is prior to 1.14.26-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2681 advisory. An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G...

MGASA-2024-0337 Updated libgsf packages fix security vulnerabilities

An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...

USN-7062-2: libgsf vulnerabilities

USN-7062-1 fixed vulnerabilities in libgsf. This update provides the corresponding updates for Ubuntu 24.10. Original advisory details: It was discovered that libgsf incorrectly handled certain Compound Document Binary files. If a user or automated system were tricked into opening a specially...

USN-7062-1: libgsf vulnerabilities

It was discovered that libgsf incorrectly handled certain Compound Document Binary files. If a user or automated system were tricked into opening a specially crafted file, a remote attacker could possibly use this issue to execute arbitrary code...