Описание
Security update for gtk3
This update for gtk3 fixes the following issues:
- CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120).
Other fixes:
- Updated to version 3.24.43
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP6
gtk2-metatheme-adwaita-3.22.3-150000.4.5.1
gtk2-theming-engine-adwaita-3.22.3-150000.4.5.1
gtk3-branding-SLE-15.0-150600.21.2.1
gtk3-data-3.24.43-150600.3.7.1
gtk3-devel-3.24.43-150600.3.7.1
gtk3-lang-3.24.43-150600.3.7.1
gtk3-metatheme-adwaita-3.22.3-150000.4.5.1
gtk3-schema-3.24.43-150600.3.7.1
gtk3-tools-3.24.43-150600.3.7.1
libgtk-3-0-3.24.43-150600.3.7.1
metatheme-adwaita-common-3.22.3-150000.4.5.1
typelib-1_0-Gtk-3_0-3.24.43-150600.3.7.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
gnome-themes-accessibility-3.22.3-150000.4.5.1
gnome-themes-accessibility-gtk2-3.22.3-150000.4.5.1
gtk2-theming-engine-adwaita-32bit-3.22.3-150000.4.5.1
gtk3-devel-doc-3.24.43-150600.3.7.1
gtk3-metatheme-adwaita-3.22.3-150000.4.5.1
openSUSE Leap 15.6
gettext-its-gtk3-3.24.43-150600.3.7.1
gnome-themes-accessibility-3.22.3-150000.4.5.1
gnome-themes-accessibility-gtk2-3.22.3-150000.4.5.1
gtk2-metatheme-adwaita-3.22.3-150000.4.5.1
gtk2-theming-engine-adwaita-3.22.3-150000.4.5.1
gtk2-theming-engine-adwaita-32bit-3.22.3-150000.4.5.1
gtk3-branding-SLE-15.0-150600.21.2.1
gtk3-branding-upstream-3.24.43-150600.3.7.1
gtk3-data-3.24.43-150600.3.7.1
gtk3-devel-3.24.43-150600.3.7.1
gtk3-devel-32bit-3.24.43-150600.3.7.1
gtk3-devel-doc-3.24.43-150600.3.7.1
gtk3-immodule-amharic-3.24.43-150600.3.7.1
gtk3-immodule-amharic-32bit-3.24.43-150600.3.7.1
gtk3-immodule-broadway-3.24.43-150600.3.7.1
gtk3-immodule-inuktitut-3.24.43-150600.3.7.1
gtk3-immodule-inuktitut-32bit-3.24.43-150600.3.7.1
gtk3-immodule-multipress-3.24.43-150600.3.7.1
gtk3-immodule-multipress-32bit-3.24.43-150600.3.7.1
gtk3-immodule-thai-3.24.43-150600.3.7.1
gtk3-immodule-thai-32bit-3.24.43-150600.3.7.1
gtk3-immodule-tigrigna-3.24.43-150600.3.7.1
gtk3-immodule-tigrigna-32bit-3.24.43-150600.3.7.1
gtk3-immodule-vietnamese-3.24.43-150600.3.7.1
gtk3-immodule-vietnamese-32bit-3.24.43-150600.3.7.1
gtk3-immodule-xim-3.24.43-150600.3.7.1
gtk3-immodule-xim-32bit-3.24.43-150600.3.7.1
gtk3-lang-3.24.43-150600.3.7.1
gtk3-metatheme-adwaita-3.22.3-150000.4.5.1
gtk3-schema-3.24.43-150600.3.7.1
gtk3-tools-3.24.43-150600.3.7.1
gtk3-tools-32bit-3.24.43-150600.3.7.1
libgtk-3-0-3.24.43-150600.3.7.1
libgtk-3-0-32bit-3.24.43-150600.3.7.1
metatheme-adwaita-common-3.22.3-150000.4.5.1
typelib-1_0-Gtk-3_0-3.24.43-150600.3.7.1
Ссылки
- Link for SUSE-SU-2025:0031-1
- E-Mail link for SUSE-SU-2025:0031-1
- SUSE Security Ratings
- SUSE Bug 1172879
- SUSE Bug 1228120
- SUSE CVE CVE-2024-6655 page
Описание
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP6:gtk2-metatheme-adwaita-3.22.3-150000.4.5.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:gtk2-theming-engine-adwaita-3.22.3-150000.4.5.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:gtk3-branding-SLE-15.0-150600.21.2.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:gtk3-data-3.24.43-150600.3.7.1
Ссылки
- CVE-2024-6655
- SUSE Bug 1228120