Exworm

**Name of the Vulnerable Software and Affected Versions** gxine versions 0.3 through 0.4.4 **Description** The issue allows remote attackers to execute arbitrary code via a ram file with a URL whose hostname contains format string specifiers. **Recommendations** For gxine versions 0.3 through 0.4.4, update to a version that is not affected by this issue.

**Name of the Vulnerable Software and Affected Versions** gedit versions 2.10.2 and earlier **Description** The issue is related to multiple vulnerabilities in the gedit package of the Debian GNU/Linux operating system, which can lead to a disruption of protected information availability. These vulnerabilities can be exploited remotely. A format string vulnerability in gedit may allow attackers to cause a denial of service via a bin file with format string specifiers in the filename. It has been reported that web browsers and email clients could be configured to provide a file name as an argument to gedit, allowing for a valid attack that crosses security boundaries. **Recommendations** For gedit version 2.10.2 and earlier, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, avoid using gedit to open files from untrusted sources, especially those with potentially malicious filenames. Restrict access to gedit and its associated files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.