Filtered by vendor Linuxmint
Subscribe
Total
8 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-20326 | 3 Debian, Gnome, Linuxmint | 3 Debian Linux, Gthumb, Pix | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file. | |||||
CVE-2019-17080 | 1 Linuxmint | 1 Mintinstall | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker, because an unpickle occurs. This is resolved in 8.0.0 and backports. | |||||
CVE-2018-13054 | 2 Debian, Linuxmint | 2 Debian Linux, Cinnamon | 2024-11-21 | 5.8 MEDIUM | 8.1 HIGH |
An issue was discovered in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written to the respective user's $HOME/.face location. If an unprivileged user prepares a symlink pointing to an arbitrary location, then this location will be overwritten with the icon content. | |||||
CVE-2014-1949 | 3 Canonical, Gnome, Linuxmint | 3 Ubuntu, Gtk, Linux Mint | 2024-11-21 | 7.2 HIGH | N/A |
GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button. | |||||
CVE-2012-1567 | 1 Linuxmint | 1 Linuxmint | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintUpdate. | |||||
CVE-2012-1566 | 1 Linuxmint | 1 Linuxmint | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintNanny. | |||||
CVE-2023-29380 | 1 Linuxmint | 1 Warpinator | 2024-02-28 | N/A | 7.5 HIGH |
Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames. | |||||
CVE-2022-42725 | 1 Linuxmint | 1 Warpinator | 2024-02-28 | N/A | 7.5 HIGH |
Warpinator through 1.2.14 allows access outside of an intended directory, as demonstrated by symbolic directory links. |