Published: 29/10/2018 Updated: 07/12/2018

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

An issue exists in gThumb up to and including 3.6.2. There is a double-free vulnerability in the add_themes_from_dir method in dlg-contact-sheet.c because of two successive calls of g_free, each of which frees the same buffer.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnome gthumb
debian debian linux 8.0

Debian Bug report logs - #912290 gthumb: CVE-2018-18718 Package: src:gthumb; Maintainer for src:gthumb is Herbert Parentes Fortes Neto <hpfn@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 29 Oct 2018 21:21:02 UTC Severity: important Tags: security, upstream Found in version gthumb/3:3 ...

An issue was discovered in gThumb through 362 There is a double-free vulnerability in the add_themes_from_dir method in dlg-contact-sheetc because of two successive calls of g_free, each of which frees the same buffer ...

CWE-415 https://gitlab.gnome.org/GNOME/gthumb/issues/18 https://lists.debian.org/debian-lts-announce/2018/11/msg00002.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912290 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-18718

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect