CVE-2024-6655
Published: 11 July 2024
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
gtk+2.0
Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Released
(2.24.32-4ubuntu4.1)
|
|
| jammy |
Released
(2.24.33-2ubuntu2.1)
|
|
| mantic |
Ignored
(end of life, was needs-triage)
|
|
| noble |
Released
(2.24.33-4ubuntu1.1)
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
|
gtk+3.0
Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Released
(3.24.20-0ubuntu1.2)
|
|
| jammy |
Released
(3.24.33-1ubuntu2.2)
|
|
| mantic |
Ignored
(end of life, was needs-triage)
|
|
| noble |
Released
(3.24.41-4ubuntu1.1)
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
|
Patches:
upstream: https://gitlab.gnome.org/GNOME/gtk/-/commit/3bbf0b6176d42836d23c36a6ac410e807ec0a7a7 |
||