Lucene search
K

195 matches found

OSV
OSV
added 2024/11/06 10:11 a.m.13 views

SUSE-SU-2024:3921-1 Security update for libgsf

This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...

8.4CVSS7.9AI score0.00458EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2024/11/06 10:11 a.m.3 views

Security update for libgsf

This update for libgsf fixes the following issues: CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS6.2AI score0.00458EPSS
Exploits0References8
OSV
OSV
added 2024/11/06 10:11 a.m.9 views

SUSE-SU-2024:3920-1 Security update for libgsf

This update for libgsf fixes the following issues: - CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283...

8.4CVSS7.9AI score0.00458EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/11/06 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2024:3921-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS6AI score0.00458EPSS
Exploits0References5
Amazon
Amazon
added 2024/11/01 12:0 a.m.26 views

Important: libgsf

Issue Overview: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows fo...

8.4CVSS8.4AI score0.00458EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/01 12:0 a.m.13 views

Amazon Linux 2 : libgsf (ALAS-2024-2681)

The version of libgsf installed on the remote host is prior to 1.14.26-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2681 advisory. An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G...

8.4CVSS7.3AI score0.00458EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/10/31 12:0 a.m.12 views

SUSE SLES12 Security Update : libgsf (SUSE-SU-2024:3770-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3770-1 advisory. - CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 - CVE-2024-36474: Fixed out-of-bounds index when processing...

8.4CVSS6.7AI score0.0133EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2024/10/30 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2024:3770-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS6.2AI score0.0133EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2024/10/29 12:55 p.m.2 views

Security update for libgsf

This update for libgsf fixes the following issues: CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 CVE-2024-36474: Fixed out-of-bounds index when processing a directory via an integer overflow in the compound document binary file format parser bsc1231282...

7.8CVSS7.9AI score0.0133EPSS
Exploits0References12
OSV
OSV
added 2024/10/29 12:55 p.m.12 views

SUSE-SU-2024:3770-1 Security update for libgsf

This update for libgsf fixes the following issues: - CVE-2016-9888: Fixed null pointer dereference with corrupted tar files bsc1014609 - CVE-2024-36474: Fixed out-of-bounds index when processing a directory via an integer overflow in the compound document binary file format parser bsc1231282 -...

8.4CVSS7.1AI score0.0133EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/10/29 12:0 a.m.5 views

The vulnerability of the structured file library in The GNOME Project’s libgsf, related to integer overflows due to dynamic memory usage, allows attackers to execute arbitrary code.

The vulnerability of the structured file library in The GNOME Project’s libgsf library is related to the overflow of integers during the processing of the partition allocation table. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6.7AI score0.00458EPSS
Exploits0References11Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/10/29 12:0 a.m.5 views

The vulnerability of the GNOME Project’s Glibgsf library, related to integer overflow, allows an attacker to execute arbitrary code.

The vulnerability of the structured file library in The GNOME Project’s libgsf is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6.7AI score0.00403EPSS
Exploits0References10Affected Software6
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2024-0337)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.1AI score0.00458EPSS
Exploits0References5
OSV
OSV
added 2024/10/27 2:37 a.m.9 views

MGASA-2024-0337 Updated libgsf packages fix security vulnerabilities

An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-boun...

8.4CVSS8.6AI score0.00458EPSS
Exploits0References4
Redos
Redos
added 2024/10/22 12:0 a.m.298 views

ROS-20241021-02

GNOME Project G libgsf structured file library vulnerability is related to heap-based integer overflow during processing of sector allocation table. heap-based integers when processing the sector allocation table. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

8.4CVSS8.3AI score0.00458EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/10/22 12:0 a.m.11 views

Ubuntu: Security Advisory (USN-7062-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.1AI score0.00458EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/10/21 12:38 p.m.9 views

USN-7062-2: libgsf vulnerabilities

USN-7062-1 fixed vulnerabilities in libgsf. This update provides the corresponding updates for Ubuntu 24.10. Original advisory details: It was discovered that libgsf incorrectly handled certain Compound Document Binary files. If a user or automated system were tricked into opening a specially...

8.4CVSS6.8AI score0.00458EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/21 12:0 a.m.17 views

Ubuntu 24.10 : libgsf vulnerabilities (USN-7062-2)

The remote Ubuntu 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7062-2 advisory. USN-7062-1 fixed vulnerabilities in libgsf. This update provides the corresponding updates for Ubuntu 24.10. Tenable has extracted the preceding description...

8.4CVSS6.4AI score0.00458EPSS
Exploits0References3
Fedora
Fedora
added 2024/10/15 12:19 a.m.11 views

[SECURITY] Fedora 41 Update: libgsf-1.14.53-1.fc41

A library for reading and writing structured files e.g. MS OLE and Zip...

8.4CVSS7AI score0.00458EPSS
Exploits0
Fedora
Fedora
added 2024/10/14 1:57 a.m.15 views

[SECURITY] Fedora 40 Update: libgsf-1.14.53-1.fc40

A library for reading and writing structured files e.g. MS OLE and Zip...

8.4CVSS8.5AI score0.00458EPSS
Exploits0
Rows per page
Query Builder