SUSE-SU-2024:2634-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2024/suse-su-20242634-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:2634-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2024:2634-1

Related

CVE-2024-6655

Published

2024-07-30T07:13:54Z

Modified

2024-07-30T07:13:54Z

Summary

Security update for gtk2

Details

This update for gtk2 fixes the following issues:

CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120)

References

Affected packages

SUSE:Linux Enterprise Module for Basesystem 15 SP6 / gtk2

Package

Name: gtk2
Purl: pkg:rpm/suse/gtk2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.24.33-150600.11.3.1

Ecosystem specific

{
    "binaries": [
        {
            "typelib-1_0-Gtk-2_0": "2.24.33-150600.11.3.1",
            "gtk2-devel": "2.24.33-150600.11.3.1",
            "gtk2-tools": "2.24.33-150600.11.3.1",
            "libgtk-2_0-0": "2.24.33-150600.11.3.1",
            "gtk2-lang": "2.24.33-150600.11.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Desktop Applications 15 SP6 / gtk2

Package

Name: gtk2
Purl: pkg:rpm/suse/gtk2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.24.33-150600.11.3.1

Ecosystem specific

{
    "binaries": [
        {
            "gtk2-data": "2.24.33-150600.11.3.1",
            "gtk2-tools-32bit": "2.24.33-150600.11.3.1",
            "libgtk-2_0-0-32bit": "2.24.33-150600.11.3.1"
        }
    ]
}

openSUSE:Leap 15.6 / gtk2

Package

Name: gtk2
Purl: pkg:rpm/opensuse/gtk2&distro=openSUSE%20Leap%2015.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.24.33-150600.11.3.1

Ecosystem specific

{
    "binaries": [
        {
            "libgtk-2_0-0": "2.24.33-150600.11.3.1",
            "gtk2-immodule-tigrigna-32bit": "2.24.33-150600.11.3.1",
            "gtk2-immodule-xim-32bit": "2.24.33-150600.11.3.1",
            "gtk2-tools-32bit": "2.24.33-150600.11.3.1",
            "gtk2-lang": "2.24.33-150600.11.3.1",
            "gtk2-immodule-vietnamese-32bit": "2.24.33-150600.11.3.1",
            "gtk2-devel": "2.24.33-150600.11.3.1",
            "gtk2-immodule-inuktitut": "2.24.33-150600.11.3.1",
            "gtk2-tools": "2.24.33-150600.11.3.1",
            "gtk2-immodule-tigrigna": "2.24.33-150600.11.3.1",
            "gtk2-immodule-multipress": "2.24.33-150600.11.3.1",
            "gtk2-immodule-multipress-32bit": "2.24.33-150600.11.3.1",
            "typelib-1_0-Gtk-2_0": "2.24.33-150600.11.3.1",
            "gtk2-immodule-xim": "2.24.33-150600.11.3.1",
            "gtk2-immodule-amharic-32bit": "2.24.33-150600.11.3.1",
            "gtk2-devel-32bit": "2.24.33-150600.11.3.1",
            "gtk2-immodule-amharic": "2.24.33-150600.11.3.1",
            "gtk2-data": "2.24.33-150600.11.3.1",
            "gtk2-immodule-vietnamese": "2.24.33-150600.11.3.1",
            "gtk2-immodule-inuktitut-32bit": "2.24.33-150600.11.3.1",
            "gtk2-immodule-thai": "2.24.33-150600.11.3.1",
            "gtk2-immodule-thai-32bit": "2.24.33-150600.11.3.1",
            "libgtk-2_0-0-32bit": "2.24.33-150600.11.3.1",
            "gtk2-branding-upstream": "2.24.33-150600.11.3.1"
        }
    ]
}