Gnome : Security Vulnerabilities, CVEs, Published In 2011 CVSS score >= 7
GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.
Max CVSS
7.2
EPSS Score
0.04%
Published
2011-06-14
Updated
2011-09-07
Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.
Max CVSS
7.6
EPSS Score
18.56%
Published
2011-01-24
Updated
2023-02-13
Untrusted search path vulnerability in modules/engines/ms-windows/xp_theme.c in GTK+ before 2.24.0 allows local users to gain privileges via a Trojan horse uxtheme.dll file in the current working directory, a different vulnerability than CVE-2010-4831.
Max CVSS
9.3
EPSS Score
0.09%
Published
2011-09-06
Updated
2023-08-03
3 vulnerabilities found