Linuxmint: Security Vulnerabilities
Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames.
CVSS Score
7.5
EPSS Score
0.014
Published
2023-05-29
Warpinator through 1.2.14 allows access outside of an intended directory, as demonstrated by symbolic directory links.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-10-10
A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file.
CVSS Score
7.8
EPSS Score
0.019
Published
2020-03-16
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintNanny.
CVSS Score
7.5
EPSS Score
0.002
Published
2020-02-07
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintUpdate.
CVSS Score
7.5
EPSS Score
0.002
Published
2020-02-07
mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker, because an unpickle occurs. This is resolved in 8.0.0 and backports.
CVSS Score
7.8
EPSS Score
0.108
Published
2019-10-02
An issue was discovered in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written to the respective user's $HOME/.face location. If an unprivileged user prepares a symlink pointing to an arbitrary location, then this location will be overwritten with the icon content.
CVSS Score
8.1
EPSS Score
0.004
Published
2018-07-02
GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.
CVSS Score
7.2
EPSS Score
0.0
Published
2015-01-16