Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/gnome-shell@3.38.6-1~deb11u2?distro=trixie
purl pkg:deb/debian/gnome-shell@3.38.6-1~deb11u2?distro=trixie
Next non-vulnerable version 43.6-1~deb12u2
Latest non-vulnerable version 49.5-1
Risk 3.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-nq2k-cj2q-g7dc
Aliases:
CVE-2024-36472
gnome-shell: code execution in portal helper
47.0-3
Affected by 0 other vulnerabilities.
48.7-0+deb13u2
Affected by 0 other vulnerabilities.
49.5-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (11)
Vulnerability Summary Aliases
VCID-3hgy-yca4-9qfw An information disclosure vulnerability in GNOME Shell might allow local attackers to obtain sensitive information. CVE-2020-17489
VCID-8afx-12c5-gube gnome-shell: Screenshot tool allows viewing open windows when session is locked CVE-2023-43090
VCID-8za5-vf91-4ke3 gnome-shell: partial lock screen bypass CVE-2019-3820
VCID-kjwz-sagx-zyg3 gnome-shell: lockscreen bypass with printscreen key CVE-2014-7300
VCID-kncq-w5uj-yugf gnome-shell: blind command execution via activities search keyboard focus CVE-2013-7220
VCID-m82g-jdnb-ekas gnome-shell: Distributions using CAP_SYS_NICE in gnome-shell may be exposed to privilege escalation CVE-2021-3982
VCID-muwk-vv23-8ybu gnome-shell: locking protection bypass allow unauthorized user to kill existing applications or start new ones CVE-2021-20315
VCID-r1fr-2h37-bybw gnome-shell: Mishandling extensions that fail to reload CVE-2017-8288
VCID-tk8t-xkfr-mbg2 gnome-shell in GNOME Shell 2.31.5 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. CVE-2010-4000
VCID-ug27-xpfs-mye2 The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page. CVE-2012-4427
VCID-xb57-82md-nqdg gnome-shell: run command dialog visible above screen locker CVE-2013-7221

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:59:29.346907+00:00 Debian Importer Fixing VCID-8afx-12c5-gube https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:45:47.509075+00:00 Debian Importer Fixing VCID-8za5-vf91-4ke3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:33:28.248773+00:00 Debian Importer Fixing VCID-ug27-xpfs-mye2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:34:37.136431+00:00 Debian Importer Fixing VCID-m82g-jdnb-ekas https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:21:29.792901+00:00 Debian Importer Fixing VCID-3hgy-yca4-9qfw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:36:25.194143+00:00 Debian Importer Fixing VCID-xb57-82md-nqdg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:04:44.228812+00:00 Debian Importer Fixing VCID-kjwz-sagx-zyg3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:58:35.360361+00:00 Debian Importer Fixing VCID-tk8t-xkfr-mbg2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:17:13.524554+00:00 Debian Importer Fixing VCID-r1fr-2h37-bybw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:59:05.237237+00:00 Debian Importer Fixing VCID-muwk-vv23-8ybu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:55:15.732861+00:00 Debian Importer Fixing VCID-kncq-w5uj-yugf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:55:34.932185+00:00 Debian Importer Fixing VCID-8afx-12c5-gube https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:45:11.738880+00:00 Debian Importer Fixing VCID-8za5-vf91-4ke3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:36:01.976770+00:00 Debian Importer Fixing VCID-ug27-xpfs-mye2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:53:33.788653+00:00 Debian Importer Fixing VCID-m82g-jdnb-ekas https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:58.025903+00:00 Debian Importer Fixing VCID-3hgy-yca4-9qfw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:10:04.724933+00:00 Debian Importer Fixing VCID-xb57-82md-nqdg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:45:47.942305+00:00 Debian Importer Fixing VCID-kjwz-sagx-zyg3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:41:00.859984+00:00 Debian Importer Fixing VCID-tk8t-xkfr-mbg2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:12:20.869280+00:00 Debian Importer Fixing VCID-r1fr-2h37-bybw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:01:32.782091+00:00 Debian Importer Fixing VCID-muwk-vv23-8ybu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:59:14.802074+00:00 Debian Importer Fixing VCID-kncq-w5uj-yugf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:25:29.342524+00:00 Debian Importer Affected by VCID-nq2k-cj2q-g7dc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.292736+00:00 Debian Importer Fixing VCID-8afx-12c5-gube https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.246263+00:00 Debian Importer Fixing VCID-m82g-jdnb-ekas https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.205564+00:00 Debian Importer Fixing VCID-muwk-vv23-8ybu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.162054+00:00 Debian Importer Fixing VCID-3hgy-yca4-9qfw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.112064+00:00 Debian Importer Fixing VCID-8za5-vf91-4ke3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.064433+00:00 Debian Importer Fixing VCID-r1fr-2h37-bybw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:29.023097+00:00 Debian Importer Fixing VCID-kjwz-sagx-zyg3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:28.982175+00:00 Debian Importer Fixing VCID-xb57-82md-nqdg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:28.941106+00:00 Debian Importer Fixing VCID-kncq-w5uj-yugf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:28.899477+00:00 Debian Importer Fixing VCID-ug27-xpfs-mye2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:25:28.852057+00:00 Debian Importer Fixing VCID-tk8t-xkfr-mbg2 https://security-tracker.debian.org/tracker/data/json 38.1.0