gnome

357 tracked vulnerabilities.

CVE-2018-10767 MEDIUM
libgxps < 0.3.0 - Denial of Service via Stack-Based Buffer Over-Read in gxps_images_guess_content_type
May 06, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-10733 MEDIUM
libgxps < 0.3.0 - Denial of Service via Heap-Based Buffer Over-Read in ft_font_face_hash
May 04, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-1000135 HIGH
GNOME NetworkManager <1.10.2 - Info Disclosure
Mar 20, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-1000041 HIGH
GNOME librsvg before 2.41.2 - Information Disclosure
Feb 09, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-5345 HIGH
GNOME gcab <0.7.4 - Buffer Overflow
Jan 12, 2018
CVSS 7.8
EPSS 0.02
CVE-2017-12447 HIGH
gdk-pixbuf - Denial of Service via Crafted File Folder
Mar 07, 2019
CVSS 7.8
EPSS 0.01
CVE-2017-12164 MEDIUM
gnome_display_manager 3.24.1 - Unauthenticated Screen Unlock Bypass via Autologin Greeter
Jul 26, 2018
CVSS 4.1
EPSS 0.00
CVE-2017-17689 MEDIUM
9folders nine - Plaintext Exfiltration via S/MIME CBC Malleability-Gadget Attack
May 16, 2018
CVSS 5.9
EPSS 0.04
CVE-2017-2885 CRITICAL
libsoup 2.58 - Stack-based Buffer Overflow via HTTP Request
Apr 24, 2018
CVSS 9.8
EPSS 0.24
CVE-2017-1000422 HIGH
Gnome gdk-pixbuf <2.36.8 - Memory Corruption
Jan 02, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-1000159 HIGH
Evince <3.25.91 - Command Injection
Nov 27, 2017
CVSS 7.8
EPSS 0.01
CVE-2017-14604 MEDIUM
GNOME Nautilus <3.23.90 - Info Disclosure
Sep 20, 2017
CVSS 6.5
EPSS 0.02
CVE-2017-2870 HIGH
Gdk-Pixbuf 2.36.6 - Integer Overflow in TIFF Image Parser
Sep 05, 2017
CVSS 7.8
EPSS 0.03
CVE-2017-2862 HIGH
Gdk-Pixbuf 2.36.6 - Heap Overflow via JPEG Image Loading
Sep 05, 2017
CVSS 7.8
EPSS 0.05
CVE-2017-14108 MEDIUM
GNOME gedit < 3.22.1 - Denial of Service via File with Leading Null Bytes
Sep 05, 2017
CVSS 5.5
EPSS 0.02
CVE-2017-1000083 HIGH
Evince CBT File Command Injection
Sep 05, 2017
CVSS 7.8
EPSS 0.51
CVE-2017-11590 HIGH
libgxps 0.2.5 - Denial of Service via NULL Pointer Dereference in caseless_hash
Jul 24, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-11464 HIGH
GNOME librsvg <2.40.17 - Memory Corruption
Jul 19, 2017
CVSS 7.8
EPSS 0.01
CVE-2017-1000044 CRITICAL
gtk-vnc 0.4.2 - Memory Corruption via Framebuffer Boundary Mismanagement
Jul 17, 2017
CVSS 9.8
EPSS 0.02
CVE-2017-1000025 HIGH
GNOME Web <3.23.5-3.20.7 - Info Disclosure
Jul 17, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-1000024 HIGH
Shotwell <0.24.4, <0.25.3 - Info Disclosure
Jul 17, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-11171 MEDIUM
gnome-session < 2.29.92 - Denial of Service via ICE Connection Authentication Bypass
Jul 11, 2017
CVSS 5.5
EPSS 0.00
CVE-2017-8871 MEDIUM
libcroco 0.6.12 - Denial of Service via Crafted CSS File
Jun 12, 2017
CVSS 6.5
EPSS 0.13
CVE-2017-8834 MEDIUM
libcroco 0.6.12 - Denial of Service via Crafted CSS File
Jun 12, 2017
CVSS 6.5
EPSS 0.04
CVE-2017-8288 HIGH
gnome-shell 3.22-3.24.1 - Improper Input Validation in Extension Reload Handling
Apr 27, 2017
CVSS 8.1
EPSS 0.03