Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-7960
The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote malicious users to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.
Gnome Libcroco 0.6.11
Gnome Libcroco 0.6.12
7.8
CVSSv3
CVE-2017-7961
The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly ha...
Gnome Libcroco 0.6.12
Gnome Libcroco 0.6.11
5.5
CVSSv3
CVE-2021-28650
autoar-extractor.c in GNOME gnome-autoar prior to 0.3.1, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink in certain complex situations. NOTE: this issue exists...
Gnome Gnome-autoar
Fedoraproject Fedora 34
NA
CVE-2011-2485
The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf prior to 2.23.5 does not properly handle certain return values, which allows remote malicious users to cause a denial of service (memory consumption) via a crafted GIF image file.
Gnome Gdk-pixbuf
Gnome Gdk-pixbuf 2.22.1
7.8
CVSSv3
CVE-2017-12447
GdkPixBuf (aka gdk-pixbuf), possibly 2.32.2, as used by GNOME Nautilus 3.14.3 on Ubuntu 16.04, allows malicious users to cause a denial of service (stack corruption) or possibly have unspecified other impact via a crafted file folder.
Gnome Nautilus 3.14.3
Gnome Gdk-pixbuf 2.32.2
NA
CVE-2007-5337
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5, when running on Linux systems with gnome-vfs support, might allow remote malicious users to read arbitrary files on SSH/sftp servers that accept key authentication by creating a web page on the target server, in which...
Gnome Gnome-vfs
Mozilla Firefox
Mozilla Seamonkey
7.8
CVSSv3
CVE-2017-11421
gnome-exe-thumbnailer prior to 0.9.5 is prone to a VBScript Injection when generating thumbnails for MSI files, aka the "Bad Taste" issue. There is a local attack if the victim uses the GNOME Files file manager, and navigates to a directory containing a .msi file with V...
Gnome-exe-thumbnailer Project Gnome-exe-thumbnailer
NA
CVE-1999-1477
Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack.
Gnome Gnome Libs 1.0.8
Mandrakesoft Mandrake Linux 6.0
1 EDB exploit
NA
CVE-2009-0582
The ntlm_challenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server (aka evolution-data-server) 2.24.5 and previous versions, and 2.25.92 and previous versions 2.25.x versions, does not validate whether a certain leng...
Gnome Evolution-data-server
Gnome Evolution-data-server 2.25.92
NA
CVE-2014-8154
The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent malicious users to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors, which trigger...
Gnome Vala 0.26.1
Gnome Vala 0.26.0
Opensuse Opensuse 13.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »