Gnome

Gtk

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2012-0828

  • EPSS 5.89%
  • Published 21.02.2020 18:15:11
  • Last modified 21.11.2024 01:35:48

Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing char...

7.2

CVE-2014-1949

  • EPSS 0.04%
  • Published 16.01.2015 16:59:00
  • Last modified 12.04.2025 10:46:40

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.

6.9

CVE-2010-4831

  • EPSS 0.15%
  • Published 06.09.2011 15:55:01
  • Last modified 11.04.2025 00:51:21

Untrusted search path vulnerability in gdk/win32/gdkinput-win32.c in GTK+ before 2.21.8 allows local users to gain privileges via a Trojan horse Wintab32.dll file in the current working directory.

9.3

CVE-2010-4833

  • EPSS 0.3%
  • Published 06.09.2011 15:55:01
  • Last modified 11.04.2025 00:51:21

Untrusted search path vulnerability in modules/engines/ms-windows/xp_theme.c in GTK+ before 2.24.0 allows local users to gain privileges via a Trojan horse uxtheme.dll file in the current working directory, a different vulnerability than CVE-2010-483...

6.2

CVE-2010-0732

  • EPSS 0.04%
  • Published 19.03.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attacke...

2.1

CVE-2007-0010

  • EPSS 0.91%
  • Published 24.01.2007 19:28:00
  • Last modified 09.04.2025 00:30:58

The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2.4.13 allows context-dependent attackers to cause a denial of service (crash) via a malformed image file.

7.8

CVE-2005-2975

  • EPSS 11.89%
  • Published 18.11.2005 06:03:00
  • Last modified 03.04.2025 01:03:51

io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ before 2.8.7 allows attackers to cause a denial of service (infinite loop) via a crafted XPM image with a large number of colors.

7.5

CVE-2005-2976

  • EPSS 1.72%
  • Published 18.11.2005 06:03:00
  • Last modified 03.04.2025 01:03:51

Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-200...

5

CVE-2005-0372

  • EPSS 4.09%
  • Published 02.05.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Directory traversal vulnerability in gftp before 2.0.18 for GTK+ allows remote malicious FTP servers to read arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.

7.5

CVE-2005-0891

  • EPSS 2.01%
  • Published 02.05.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.