If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption vulnerability (CVE-2023-43641) in the libcue library. About CVE-2023-43641 Discovered by GitHub security researcher Kevin Backhouse, CVE-2023-43641 affects the libcue library, which is used for parsing cue sheets (files) that contain the layout of tracks on a CD. Libcue is also used by an application called tracker-miners, which indexes files … More

The post GNOME users at risk of RCE attack (CVE-2023-43641) appeared first on Help Net Security.