gnome

357 tracked vulnerabilities.

CVE-2019-12449 MEDIUM
Opensuse Leap < 1.41.2 - Improper Exception Handling
May 29, 2019
CVSS 5.7
EPSS 0.02
CVE-2019-12448 HIGH
gvfs 1.29.4-1.41.2 - Race Condition in Admin Backend
May 29, 2019
CVSS 8.1
EPSS 0.02
CVE-2019-12447 HIGH
GNOME gvfs <1.41.2 - Privilege Escalation
May 29, 2019
CVSS 7.3
EPSS 0.02
CVE-2019-11460 CRITICAL
GNOME gnome-desktop <3.30.2.2.2, <3.32.1.1 - Privilege Escalation
Apr 22, 2019
CVSS 9.0
EPSS 0.02
CVE-2019-11459 MEDIUM
GNOME Evince <3.32.0 - Memory Corruption
Apr 22, 2019
CVSS 5.5
EPSS 0.01
CVE-2019-11461 HIGH
GNOME Nautilus <3.30.6, <3.32.1 - Escape Sandbox
Apr 22, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-3827 HIGH
gvfs < 1.39.4 - Incorrect Authorization in Admin Backend
Mar 25, 2019
CVSS 7.0
EPSS 0.00
CVE-2019-9633 MEDIUM
GNOME GLib - Denial of Service via Crafted Web Site
Mar 08, 2019
CVSS 6.5
EPSS 0.02
CVE-2019-3825 MEDIUM
gnome_display_manager < 3.31.4 - Unauthenticated Lock Screen Bypass via Timed Login
Feb 06, 2019
CVSS 6.3
EPSS 0.01
CVE-2019-3820 MEDIUM
gnome-shell 3.15.91-3.30.3 - Improper Authentication via Lock Screen Bypass
Feb 06, 2019
CVSS 4.3
EPSS 0.00
CVE-2019-6251 HIGH
WebKitGTK & WPE WebKit <2.24.1 - SSRF
Jan 14, 2019
CVSS 8.1
EPSS 0.04
CVE-2018-20781 HIGH
GNOME Keyring < 3.27.2 - Insufficiently Protected Credentials via Session-Child Process
Feb 12, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-15587 MEDIUM
GNOME Evolution < 3.28.2 - OpenPGP Signature Spoofing via Crafted Email Attachment
Feb 11, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-19358 HIGH
GNOME Keyring <3.28.2 - Info Disclosure
Nov 18, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-18718 HIGH
gThumb < 3.6.2 - Double Free in add_themes_from_dir
Oct 29, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-16429 HIGH
GNOME GLib 2.56.1 - Out-of-bounds Read in g_markup_parse_context_parse
Sep 04, 2018
CVSS 7.5
EPSS 0.04
CVE-2018-16428 CRITICAL
GNOME GLib - NULL Pointer Dereference in g_markup_parse_context_end_parse
Sep 04, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-15120 MEDIUM
Pango 1.40.8-1.42.3 - Denial of Service via Invalid Unicode Sequences
Aug 24, 2018
CVSS 6.5
EPSS 0.11
CVE-2018-14424 HIGH
GNOME Display Manager < 3.29.1 - Use-After-Free via D-Bus Interface
Aug 14, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-10900 HIGH
Network Manager VPNC Username Privilege Escalation
Jul 26, 2018
CVSS 7.8
EPSS 0.05
CVE-2018-12910 CRITICAL
libsoup 2.63.2 - Out-of-bounds Read via Empty Hostname in get_cookies
Jul 05, 2018
CVSS 9.8
EPSS 0.04
CVE-2018-12422 CRITICAL
Evolution-Data-Server <3.29.2 - Buffer Overflow
Jun 15, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-12016 HIGH
GNOME Web < 3.28.2.1 - Denial of Service via window.open and document.write
Jun 07, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-11713 MEDIUM
WebKitGTK+ <2.20.0 - Info Disclosure
Jun 04, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-11396 HIGH
GNOME Web < 3.28.2.1 - Denial of Service via NULL URL Access
May 23, 2018
CVSS 7.5
EPSS 0.01