First published: Tue Jul 16 2024(Updated: )
It was discovered that GTK would attempt to load modules from the current directory, contrary to expectations. If users started GTK applications from shared directories, a local attacker could use this issue to execute arbitrary code, and possibly escalate privileges.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libgail-3-0t64 | <3.24.41-4ubuntu1.1 | 3.24.41-4ubuntu1.1 |
Ubuntu Ubuntu | =24.04 | |
All of | ||
ubuntu/libgtk2.0-0t64 | <2.24.33-4ubuntu1.1 | 2.24.33-4ubuntu1.1 |
Ubuntu Ubuntu | =24.04 | |
All of | ||
ubuntu/libgtk-3-0 | <3.24.33-1ubuntu2.2 | 3.24.33-1ubuntu2.2 |
Ubuntu Ubuntu | =22.04 | |
All of | ||
ubuntu/libgtk2.0-0 | <2.24.33-2ubuntu2.1 | 2.24.33-2ubuntu2.1 |
Ubuntu Ubuntu | =22.04 | |
All of | ||
ubuntu/libgtk-3-0 | <3.24.20-0ubuntu1.2 | 3.24.20-0ubuntu1.2 |
Ubuntu Ubuntu | =20.04 | |
All of | ||
ubuntu/libgtk2.0-0 | <2.24.32-4ubuntu4.1 | 2.24.32-4ubuntu4.1 |
Ubuntu Ubuntu | =20.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.