Your submission was sent successfully! Close

CVE-2018-18718

Published: 29 October 2018

An issue was discovered in gThumb through 3.6.2. There is a double-free vulnerability in the add_themes_from_dir method in dlg-contact-sheet.c because of two successive calls of g_free, each of which frees the same buffer.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
gthumb
Launchpad, Ubuntu, Debian
bionic Needed

cosmic Ignored
(reached end-of-life)
disco Not vulnerable
(3:3.6.2-2)
eoan Not vulnerable
(3:3.6.2-2)
focal Not vulnerable
(3:3.6.2-2)
groovy Not vulnerable
(3:3.6.2-2)
hirsute Not vulnerable
(3:3.6.2-2)
impish Not vulnerable
(3:3.6.2-2)
jammy Not vulnerable
(3:3.6.2-2)
precise Does not exist

trusty Does not exist
(trusty was needs-triage)
upstream
Released (3:3.6.2-2)
xenial Ignored
(end of standard support, was needed)