Lucene search
UbuntuUSN-6833-1HistoryJun 13, 2024 - 12:00 a.m.
VTE vulnerability
2024-06-1300:00:00
ubuntu.com
vte vulnerability
ubuntu
denial of service
4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
7.4 High
AI Score
Confidence
Low
Releases
- Ubuntu 24.04 LTS
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- vte2.91 - Terminal emulator widget for GTK
Details
Siddharth Dushantha discovered that VTE incorrectly handled large window
resize escape sequences. An attacker could possibly use this issue to
consume resources, leading to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 24.04 | noarch | libvte-2.91-0 | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | gir1.2-vte-2.91 | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | gir1.2-vte-3.91 | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-0-dbgsym | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-common | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-common-dbgsym | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-dev | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-doc | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-gtk4-0 | < 0.76.0-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libvte-2.91-gtk4-0-dbgsym | < 0.76.0-1ubuntu0.1 | UNKNOWN |
References
Related
redhatcve
redhatcve
CVE-2024-37535
2024-06-14 03:57:14
openvas
openvas
Ubuntu: Security Advisory (USN-6833-1)
2024-06-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2151-1)
2024-06-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2152-1)
2024-06-24 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-37535 affecting package vte291 for versions less than 0.66.2-3
2024-06-19 17:02:35
nessus
nessus
SUSE SLES12 Security Update : vte (SUSE-SU-2024:2151-1)
2024-06-22 00:00:00
osv
osv
vte2.91 vulnerability
2024-06-13 12:35:18
CVE-2024-37535
2024-06-09 15:16:00
redos
redos
ROS-20240704-03
2024-07-04 00:00:00
vulnrichment
vulnrichment
CVE-2024-37535
2024-06-09 00:00:00
nvd
nvd
CVE-2024-37535
2024-06-09 15:16:00
ubuntucve
ubuntucve
CVE-2024-37535
2024-06-09 00:00:00
debiancve
debiancve
CVE-2024-37535
2024-06-09 15:16:00
mageia
mageia
Updated vte packages fix security vulnerability
2024-06-14 20:30:25
cve
cve
CVE-2024-37535
2024-06-09 15:16:00
cvelist
cvelist
CVE-2024-37535
2024-06-09 00:00:00
4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
7.4 High
AI Score
Confidence
Low
Related for USN-6833-1