VDB
GCVE-110-MAGEIA-2018-55
GCVE-110-MAGEIA-2018-55
Advisory Published
gnome-shell through 3.24.1 mishandles extensions that fail to reload,
which can lead to leaving extensions enabled in the lock screen. With
these extensions, a bystander could launch applications (but not interact
with them), see information from the extensions (e.g., what applications
you have opened or what music you were playing), or even execute arbitrary
commands. It all depends on what extensions a user has enabled. The
problem is caused by lack of exception handling in
js/ui/extensionSystem.js (CVE-2017-8288).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | gnome-shell | 0 (affected), 3.14.3-8.3.mga5 (unaffected), 0 (affected), 3.14.3-8.3.mga5 (unaffected) | — |
| Mageia | numlock | 0 (affected), 2.1.2-12.1.mga6 (unaffected) | — |
Aliases
Browse GCVE Records
72,409 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.