(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.
Max CVSS
3.6
EPSS Score
0.04%
Published
2012-07-17
Updated
2017-08-29
GNOME Rhythmbox 0.11.5 allows remote attackers to cause a denial of service (segmentation fault and crash) via a playlist (.pls) file with a long Title field, possibly related to the g_hash_table_lookup function in b-playlist-manager.c.
Max CVSS
4.3
EPSS Score
2.58%
Published
2009-09-08
Updated
2018-10-11
2 vulnerabilities found