Vulnerabilities > Gnome

DATE CVE VULNERABILITY TITLE RISK
2024-01-26 CVE-2022-48622 Out-of-bounds Write vulnerability in Gnome Gdkpixbuf
In GNOME GdkPixbuf (aka gdk-pixbuf) through 2.42.10, the ANI (Windows animated cursor) decoder encounters heap memory corruption (in ani_load_chunk in io-ani.c) when parsing chunks in a crafted .ani file.
local
low complexity
gnome CWE-787
7.8
2023-10-13 CVE-2023-5557 A flaw was found in the tracker-miners package.
local
high complexity
gnome redhat
7.7
2023-09-22 CVE-2023-43090 A vulnerability was found in GNOME Shell.
local
low complexity
gnome fedoraproject
5.5
2023-09-14 CVE-2023-29499 Resource Exhaustion vulnerability in Gnome Glib
A flaw was found in GLib.
network
low complexity
gnome CWE-400
7.5
2023-09-14 CVE-2023-32611 Resource Exhaustion vulnerability in Gnome Glib
A flaw was found in GLib.
local
low complexity
gnome CWE-400
5.5
2023-09-14 CVE-2023-32636 Deserialization of Untrusted Data vulnerability in Gnome Glib
A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input validation added to resolve CVE-2023-29499.
network
low complexity
gnome CWE-502
7.5
2023-09-14 CVE-2023-32643 Out-of-bounds Write vulnerability in Gnome Glib
A flaw was found in GLib.
local
low complexity
gnome CWE-787
7.8
2023-09-14 CVE-2023-32665 Deserialization of Untrusted Data vulnerability in Gnome Glib
A flaw was found in GLib.
local
low complexity
gnome CWE-502
5.5
2023-09-14 CVE-2023-36250 Injection vulnerability in Gnome Gnome-Time Tracker 3.0.2
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
local
low complexity
gnome CWE-74
7.8
2023-07-22 CVE-2023-38633 Path Traversal vulnerability in multiple products
A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element.
local
low complexity
gnome fedoraproject debian CWE-22
5.5