Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glib vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-11646
webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ up to and including 2.21.3, mishandle an unset pageURL, leading to an application crash.
Webkitgtk Webkitgtk\\+
2 EDB exploits
7.2
CVSSv2
CVE-2013-0292
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib prior to 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Freedesktop Dbus-glib
Freedesktop Dbus-glib 0.98
Freedesktop Dbus-glib 0.84
Freedesktop Dbus-glib 0.82
Freedesktop Dbus-glib 0.92
Freedesktop Dbus-glib 0.90
Freedesktop Dbus-glib 0.76
Freedesktop Dbus-glib 0.74
Freedesktop Dbus-glib 0.88
Freedesktop Dbus-glib 0.86
Freedesktop Dbus-glib 0.73
Freedesktop Dbus-glib 0.72
Freedesktop Dbus-glib 0.96
Freedesktop Dbus-glib 0.94
Freedesktop Dbus-glib 0.80
Freedesktop Dbus-glib 0.78
1 EDB exploit
6.9
CVSSv2
CVE-2012-4425
libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the a...
Freedesktop Spice-gtk -
Gtk Libgio -
1 EDB exploit
5
CVSSv2
CVE-2012-0039
GLib 2.31.8 and previous versions, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent malicious users to cause a denial of service (CPU consumption) via crafted input to...
Gnome Glib 2.14.5
Gnome Glib 2.5.0
Gnome Glib 2.24.2
Gnome Glib 2.19.1
Gnome Glib 2.29.18
Gnome Glib 2.19.10
Gnome Glib 2.0.1
Gnome Glib 2.20.2
Gnome Glib 2.23.6
Gnome Glib 2.27.0
Gnome Glib 1.2.8
Gnome Glib 2.25.7
Gnome Glib 2.27.2
Gnome Glib 2.9.2
Gnome Glib 2.6.0
Gnome Glib 2.13.7
Gnome Glib 2.12.6
Gnome Glib 2.14.4
Gnome Glib 2.13.6
Gnome Glib 1.2.9
Gnome Glib 2.5.1
Gnome Glib 2.21.0
7.2
CVSSv2
CVE-2011-1709
GNOME Display Manager (gdm) prior to 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.
Gnome Gdm 2.13
Gnome Gdm 2.14
Gnome Gdm 2.20
Gnome Gdm 2.23
Gnome Gdm 2.5
Gnome Gdm 2.28
Gnome Gdm 2.2
Gnome Gdm 1.0
Gnome Gdm 2.15
Gnome Gdm 2.16
Gnome Gdm 2.24
Gnome Gdm 2.25
Gnome Gdm 2.30
Gnome Gdm 2.31
Gnome Gdm 2.32.1
Gnome Gdm 2.18
Gnome Gdm 2.19
Gnome Gdm 2.26
Gnome Gdm 2.17
Gnome Gdm 2.29
Gnome Gdm 2.4
Gnome Gdm 2.3
3.6
CVSSv2
CVE-2010-1172
DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the (1) DeviceKit-Power, (2) NetworkManager, ...
Freedesktop Dbus-glib 0.73
6.8
CVSSv2
CVE-2009-3605
Multiple integer overflows in Poppler 0.10.5 and previous versions allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, related to (1) glib/poppler-page.cc; (2) ArthurOutputDev.cc, (3) CairoOutput...
Poppler Poppler 0.7.3
Poppler Poppler 0.3.2
Poppler Poppler 0.10.3
Poppler Poppler 0.4.0
Poppler Poppler 0.8.5
Poppler Poppler 0.9.3
Poppler Poppler 0.10.1
Poppler Poppler 0.10.0
Poppler Poppler 0.7.1
Poppler Poppler 0.6.1
Poppler Poppler 0.3.1
Poppler Poppler 0.5.2
Poppler Poppler 0.5.91
Poppler Poppler 0.6.0
Poppler Poppler 0.3.3
Poppler Poppler 0.4.2
Poppler Poppler 0.10.4
Poppler Poppler 0.9.2
Poppler Poppler 0.6.4
Poppler Poppler 0.1.2
Poppler Poppler 0.8.0
Poppler Poppler 0.8.3
9.3
CVSSv2
CVE-2009-3607
Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page.cc in Poppler 0.x allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PDF document that triggers a heap-based buffe...
Poppler Poppler 0.7.3
Poppler Poppler 0.3.2
Poppler Poppler 0.10.3
Poppler Poppler 0.4.0
Poppler Poppler 0.8.5
Poppler Poppler 0.9.3
Poppler Poppler 0.10.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.7
Poppler Poppler 0.7.1
Poppler Poppler 0.6.1
Poppler Poppler 0.3.1
Poppler Poppler 0.11.3
Poppler Poppler 0.10.6
Poppler Poppler 0.5.2
Poppler Poppler 0.5.91
Poppler Poppler 0.6.0
Poppler Poppler 0.3.3
Poppler Poppler 0.4.2
Poppler Poppler 0.10.4
Poppler Poppler 0.9.2
Poppler Poppler 0.6.4
4.4
CVSSv2
CVE-2009-3289
The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link (777), which allows user-assisted local users to modify files of other users, as demonstrated by using Nautilus to modify the permissions of the user home directory.
Gnome Glib 2.0
Opensuse Opensuse 11.1
Opensuse Opensuse 11.0
Suse Suse Linux Enterprise Server 11
4.6
CVSSv2
CVE-2008-4316
Multiple integer overflows in glib/gbase64.c in GLib prior to 2.20 allow context-dependent malicious users to execute arbitrary code via a long string that is converted either (1) from or (2) to a base64 representation.
Gnome Glib 2.14.5
Gnome Glib
Gnome Glib 2.16.3
Gnome Glib 2.14.6
Gnome Glib 2.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »