Debian Gtk+3.0 vulnerabilities

CVE-2024-6655 [HIGH] CVE-2024-6655: gtk+2.0 - A flaw was found in the GTK library. Under certain conditions, it is possible fo... A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory. Scope: local bookworm: resolved (fixed in 2.24.33-2+deb12u1) bullseye: resolved (fixed in 2.24.33-2+deb11u1) forky: resolved (fixed in 2.24.33-5) sid: resolved (fixed in 2.24.33-5) trixie: resolved (fixed

CVE-2014-1949 [HIGH] CVE-2014-1949: cinnamon - GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and... GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button. Scope: local bookworm: resolved (fixed in 2.2.14-1) bullseye: resolved (fixed in 2.2.14-1) forky: resolved (fixed in 2.2.14-1) sid: resolved (fixed in 2.2.14-1) trixie: resolv

CVE-2013-7447 [MEDIUM] CVE-2013-7447: gtk+2.0 - Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c i... Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, allows remote attackers to cause a denial of service (crash) via a large image file, which triggers a large memory allocation. Scope: local bookworm: resolved (fixed in 2.2