VDB

GCVE-110-MAGEIA-2016-111

GCVE-110-MAGEIA-2016-111
Advisory Published
Vulnetix · Advisory published March 16, 2016
Updated shotwell package fixes security vulnerabilities: Shotwell is vulnerable to numerous security vulnerabilities, due to its use of the old APIs of the Webkit library which are no longer maintained (the "webkit" package in Mageia). The shotwell package has been updated to use the current Webkit API, allowing it to benefit from security fixes in the newer Webkit branch (the "webkit2" package in Mageia). Another benefit of switching to the newer Webkit branch is that it allows shotwell to validate TLS certificates when connecting to websites.

Affected Products

VendorProductVersionsPlatforms
Mageiashotwell0.22.1-0.20160310.1.mga5 (unaffected), 0 (affected), 0 (affected), 0.22.1-0.20160310.1.mga5 (unaffected)
Mageiafish0 (affected), 2.1.1-2.1.mga5 (unaffected)

Browse GCVE Records

73,734 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›