SUSE-SU-2024:2633-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2024/suse-su-20242633-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:2633-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/SUSE-SU-2024:2633-1

Upstream

CVE-2024-6655

Related

CVE-2024-6655

Published

2024-07-30T07:13:35Z

Modified

2025-05-08T17:34:06.865231Z

Summary

Security update for gtk3

Details

This update for gtk3 fixes the following issues:

CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120)

References

Affected packages

openSUSE:Leap 15.6

gtk3

Package

Name: gtk3
Purl: pkg:rpm/opensuse/gtk3&distro=openSUSE%20Leap%2015.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.24.38+111-150600.3.3.1

Ecosystem specific

{
    "binaries": [
        {
            "gtk3-immodule-multipress": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-multipress-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-schema": "3.24.38+111-150600.3.3.1",
            "libgtk-3-0-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-devel-doc": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-broadway": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-thai-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-tigrigna-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-lang": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-amharic": "3.24.38+111-150600.3.3.1",
            "gettext-its-gtk3": "3.24.38+111-150600.3.3.1",
            "gtk3-tools-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-vietnamese-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-data": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-amharic-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-inuktitut": "3.24.38+111-150600.3.3.1",
            "gtk3-branding-upstream": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-xim-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-inuktitut-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-tigrigna": "3.24.38+111-150600.3.3.1",
            "typelib-1_0-Gtk-3_0": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-thai": "3.24.38+111-150600.3.3.1",
            "gtk3-devel-32bit": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-xim": "3.24.38+111-150600.3.3.1",
            "gtk3-devel": "3.24.38+111-150600.3.3.1",
            "gtk3-immodule-vietnamese": "3.24.38+111-150600.3.3.1",
            "gtk3-tools": "3.24.38+111-150600.3.3.1",
            "libgtk-3-0": "3.24.38+111-150600.3.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP6

gtk3

Package

Name: gtk3
Purl: pkg:rpm/suse/gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.24.38+111-150600.3.3.1

Ecosystem specific

{
    "binaries": [
        {
            "gtk3-lang": "3.24.38+111-150600.3.3.1",
            "gtk3-tools": "3.24.38+111-150600.3.3.1",
            "gtk3-devel": "3.24.38+111-150600.3.3.1",
            "typelib-1_0-Gtk-3_0": "3.24.38+111-150600.3.3.1",
            "gtk3-data": "3.24.38+111-150600.3.3.1",
            "gtk3-schema": "3.24.38+111-150600.3.3.1",
            "libgtk-3-0": "3.24.38+111-150600.3.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Desktop Applications 15 SP6

gtk3

Package

Name: gtk3
Purl: pkg:rpm/suse/gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.24.38+111-150600.3.3.1

Ecosystem specific

{
    "binaries": [
        {
            "gtk3-devel-doc": "3.24.38+111-150600.3.3.1"
        }
    ]
}