Vulnerabilities > Gnome
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-26 | CVE-2022-48622 | Out-of-bounds Write vulnerability in Gnome Gdkpixbuf In GNOME GdkPixbuf (aka gdk-pixbuf) through 2.42.10, the ANI (Windows animated cursor) decoder encounters heap memory corruption (in ani_load_chunk in io-ani.c) when parsing chunks in a crafted .ani file. | 7.8 |
2023-10-13 | CVE-2023-5557 | A flaw was found in the tracker-miners package. | 7.7 |
2023-09-22 | CVE-2023-43090 | A vulnerability was found in GNOME Shell. | 5.5 |
2023-09-14 | CVE-2023-29499 | Resource Exhaustion vulnerability in Gnome Glib A flaw was found in GLib. | 7.5 |
2023-09-14 | CVE-2023-32611 | Resource Exhaustion vulnerability in Gnome Glib A flaw was found in GLib. | 5.5 |
2023-09-14 | CVE-2023-32636 | Deserialization of Untrusted Data vulnerability in Gnome Glib A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input validation added to resolve CVE-2023-29499. | 7.5 |
2023-09-14 | CVE-2023-32643 | Out-of-bounds Write vulnerability in Gnome Glib A flaw was found in GLib. | 7.8 |
2023-09-14 | CVE-2023-32665 | Deserialization of Untrusted Data vulnerability in Gnome Glib A flaw was found in GLib. | 5.5 |
2023-09-14 | CVE-2023-36250 | Injection vulnerability in Gnome Gnome-Time Tracker 3.0.2 CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record. | 7.8 |
2023-07-22 | CVE-2023-38633 | Path Traversal vulnerability in multiple products A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element. | 5.5 |