CVE-2024-6655

Опубликовано: 16 июл. 2024

Источник: debian

EPSS Низкий

Описание

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gtk+3.0	fixed	3.24.43-1		package
gtk+3.0	fixed	3.24.38-2~deb12u2	bookworm	package
gtk+3.0	fixed	3.24.24-4+deb11u4	bullseye	package
gtk+2.0	fixed	2.24.33-5		package
gtk+2.0	fixed	2.24.33-2+deb12u1	bookworm	package
gtk+2.0	fixed	2.24.33-2+deb11u1	bullseye	package

Примечания

https://gitlab.gnome.org/GNOME/gtk/-/issues/6786
https://www.openwall.com/lists/oss-security/2024/09/09/1

EPSS

Процентиль: 24%

0.00076

Низкий

Связанные уязвимости

CVE-2024-6655

CVSS3: 7

ubuntu

11 месяцев назад

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.

CVE-2024-6655

CVSS3: 7

redhat

около 1 года назад

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.

CVE-2024-6655

CVSS3: 7

nvd

11 месяцев назад

A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.

CVE-2024-6655

CVSS3: 7

msrc

11 месяцев назад

Описание отсутствует

SUSE-SU-2025:0031-1

suse-cvrf

5 месяцев назад

Security update for gtk3

EPSS

Процентиль: 24%

0.00076

Низкий