Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and SEGV. This could potentially be exploited by an arbitrary local user who creates files in /tmp before the victim uses this input method.
oryginał ENCVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HXfce Thunar
APPXfce< 1.6.15Xfce
APPXfce< 4.12
Powiązane podatności
An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a...
Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format str...
Xfce4-session 4.5.91 in Xfce does not lock the screen when the suspend or hibernate button is pressed, which m...
Double free vulnerability in the Widget Library (libxfcegui4) in Xfce before 4.4.2 might allow remote attacker...
Stack-based buffer overflow in the Panel (xfce4-panel) component in Xfce before 4.4.2 might allow remote attac...