195 matches found
SUSE-SU-2024:3921-1 Security update for libgsf
This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...
Security update for libgsf
This update for libgsf fixes the following issues: CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
SUSE-SU-2024:3920-1 Security update for libgsf
This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...
SUSE: Security Advisory (SUSE-SU-2024:3921-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Important: libgsf
Issue Overview: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows fo...
Amazon Linux 2 : libgsf (ALAS-2024-2681)
The version of libgsf installed on the remote host is prior to 1.14.26-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2681 advisory. An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G...
SUSE SLES12 Security Update : libgsf (SUSE-SU-2024:3770-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3770-1 advisory. - CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 - CVE-2024-36474: Fixed out-of-bounds index when processing...
SUSE: Security Advisory (SUSE-SU-2024:3770-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for libgsf
This update for libgsf fixes the following issues: CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 CVE-2024-36474: Fixed out-of-bounds index when processing a directory via an integer overflow in the compound document binary file format parser bsc1231282...
SUSE-SU-2024:3770-1 Security update for libgsf
This update for libgsf fixes the following issues: - CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 - CVE-2024-36474: Fixed out-of-bounds index when processing a directory via an integer overflow in the compound document binary file format parser bsc1231282 -...
The vulnerability of the structured file library in The GNOME Project’s libgsf, related to integer overflows due to dynamic memory usage, allows attackers to execute arbitrary code.
The vulnerability of the structured file library in The GNOME Project’s libgsf library is related to the overflow of integers during the processing of the partition allocation table. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the GNOME Project’s Glibgsf library, related to integer overflow, allows an attacker to execute arbitrary code.
The vulnerability of the structured file library in The GNOME Project’s libgsf is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
Mageia: Security Advisory (MGASA-2024-0337)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0337 Updated libgsf packages fix security vulnerabilities
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...
ROS-20241021-02
GNOME Project G libgsf structured file library vulnerability is related to heap-based integer overflow during processing of sector allocation table. heap-based integers when processing the sector allocation table. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...
Ubuntu: Security Advisory (USN-7062-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7062-2: libgsf vulnerabilities
USN-7062-1 fixed vulnerabilities in libgsf. This update provides the corresponding updates for Ubuntu 24.10. Original advisory details: It was discovered that libgsf incorrectly handled certain Compound Document Binary files. If a user or automated system were tricked into opening a specially...
Ubuntu 24.10 : libgsf vulnerabilities (USN-7062-2)
The remote Ubuntu 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7062-2 advisory. USN-7062-1 fixed vulnerabilities in libgsf. This update provides the corresponding updates for Ubuntu 24.10. Tenable has extracted the preceding description...
[SECURITY] Fedora 41 Update: libgsf-1.14.53-1.fc41
A library for reading and writing structured files e.g. MS OLE and Zip...
[SECURITY] Fedora 40 Update: libgsf-1.14.53-1.fc40
A library for reading and writing structured files e.g. MS OLE and Zip...