GCVE-VVD-MAGEIA-2024-116 — Vulnetix

GCVE-VVD-MAGEIA-2024-116

Advisory Published

Vulnetix · Advisory published March 27, 2024

Improper input validation enabling arbitrary Gstreamer pipeline injection. (CVE-2023-6185) Link targets allow arbitrary script execution. (CVE-2023-6186)

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	pdfgrep	0 (affected), 2.2.0-1.mga9 (unaffected)	—
Mageia	libreoffice	0 (affected), 7.6.6.3-1.mga9 (unaffected), 0 (affected), 7.6.6.3-1.mga9 (unaffected)	—
Mageia	libcmis	0 (affected), 0.6.2-1.mga9 (unaffected), 0 (affected), 0.6.2-1.mga9 (unaffected)	—
Mageia	frozen	0 (affected), 1.1.1-1.mga9 (unaffected), 0 (affected), 1.1.1-1.mga9 (unaffected)	—
Mageia	mdds	0 (affected), 2.1.1-1.mga9 (unaffected), 0 (affected), 2.1.1-1.mga9 (unaffected)	—
Mageia	libixion	0 (affected), 0.19.0-1.mga9 (unaffected), 0 (affected), 0.19.0-1.mga9 (unaffected)	—
Mageia	liborcus	0 (affected), 0.19.2-1.mga9 (unaffected), 0 (affected), 0.19.2-1.mga9 (unaffected)	—

Aliases

Transitive aliases

CNVD-2023-99632 GSD-2023-6186 BDU:2023-08655 ALSA-2024:1427 USN-6546-1 EUVD-2023-58435 ALSA-2024:1514 ALSA-2024:3835 GHSA-q565-g228-cgg3

References

Updated libreoffice packages fix security vulnerabilities

advisory

Updated libreoffice packages fix security vulnerabilities

issue

Updated libreoffice packages fix security vulnerabilities

issue

Updated libreoffice packages fix security vulnerabilities

issue

Updated libreoffice packages fix security vulnerabilities

issue

Updated pdfgrep packages fix ibpcre2 support

advisory

Updated pdfgrep packages fix ibpcre2 support

issue

Updated pdfgrep packages fix ibpcre2 support

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON

$ Console Community · 100/wk Open console ›