CVE-2025-2722 in GNOME libgsfinfo

Zusammenfassung (Englisch)

A vulnerability was found in GNOME libgsf up to 1.14.53. It has been declared as critical. This vulnerability affects the function gsf_prop_settings_collect_va. The manipulation of the argument n_alloced_params leads to heap-based buffer overflow. Local access is required to approach this attack. The vendor was contacted early about this disclosure but did not respond in any way.

Veröffentlichung

25.03.2025

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
300742	GNOME libgsf gsf_prop_settings_collect_va Pufferüberlauf [False-Positive]	122	Nicht definiert	Nicht definiert	~~CVE-2025-2722~~

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!