Advisories » MGASA-2019-0039

Updated gthumb packages fix security vulnerability

Publication date: 17 Jan 2019
Modification date: 17 Jan 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-18718

Description

An issue was discovered in gThumb through 3.6.2. There is a double-free
vulnerability in the add_themes_from_dir method in dlg-contact-sheet.c
because of two successive calls of g_free, each of which frees the same
buffer. (CVE-2018-18718)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24183
• https://lists.opensuse.org/opensuse-updates/2019-01/msg00031.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18718

SRPMS

6/core

• gthumb-3.4.5-2.1.mga6