Количество 14
Количество 14
GHSA-g9gv-9646-jvp8
GEGL before 0.4.34, as used (for example) in GIMP before 2.10.30, allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load.
CVE-2021-45463
load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature.
CVE-2021-45463
load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature.
CVE-2021-45463
load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature.
CVE-2021-45463
load_cache in GEGL before 0.4.34 allows shell expansion when a pathnam ...
openSUSE-SU-2021:4210-1
Security update for gegl
openSUSE-SU-2021:4209-1
Security update for gegl
SUSE-SU-2021:4210-1
Security update for gegl
SUSE-SU-2021:4209-1
Security update for gegl
SUSE-SU-2021:4193-1
Security update for gegl
ROS-20220125-07
Уязвимость растрового графического редактора GIMP
ELSA-2022-0177
ELSA-2022-0177: gegl04 security update (IMPORTANT)
ELSA-2022-0162
ELSA-2022-0162: gegl security update (IMPORTANT)
BDU:2022-02388
Уязвимость функции load_cache графического редактора GIMP, позволяющая нарушителю передавать специальные данные приложению и выполнять произвольные команды ОС в целевой системе
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-g9gv-9646-jvp8 GEGL before 0.4.34, as used (for example) in GIMP before 2.10.30, allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. | CVSS3: 7.8 | 2% Низкий | почти 4 года назад |
 | CVE-2021-45463 load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature. | CVSS3: 7.8 | 2% Низкий | почти 4 года назад |
 | CVE-2021-45463 load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature. | CVSS3: 7.8 | 2% Низкий | почти 4 года назад |
 | CVE-2021-45463 load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIMP releases before 2.10.30; however, this does not imply that GIMP builds enable the vulnerable feature. | CVSS3: 7.8 | 2% Низкий | почти 4 года назад |
| CVE-2021-45463 load_cache in GEGL before 0.4.34 allows shell expansion when a pathnam ... | CVSS3: 7.8 | 2% Низкий | почти 4 года назад |
 | openSUSE-SU-2021:4210-1 Security update for gegl | 2% Низкий | почти 4 года назад | |
| openSUSE-SU-2021:4209-1 Security update for gegl | 2% Низкий | почти 4 года назад | |
| SUSE-SU-2021:4210-1 Security update for gegl | 2% Низкий | почти 4 года назад | |
| SUSE-SU-2021:4209-1 Security update for gegl | 2% Низкий | почти 4 года назад | |
| SUSE-SU-2021:4193-1 Security update for gegl | 2% Низкий | почти 4 года назад | |
 | ROS-20220125-07 Уязвимость растрового графического редактора GIMP | 2% Низкий | почти 4 года назад | |
| ELSA-2022-0177 ELSA-2022-0177: gegl04 security update (IMPORTANT) | почти 4 года назад | ||
| ELSA-2022-0162 ELSA-2022-0162: gegl security update (IMPORTANT) | почти 4 года назад | ||
 | BDU:2022-02388 Уязвимость функции load_cache графического редактора GIMP, позволяющая нарушителю передавать специальные данные приложению и выполнять произвольные команды ОС в целевой системе | CVSS3: 8.8 | 2% Низкий | почти 4 года назад |
Уязвимостей на страницу