aikido.dev Secure My Code

Intel/AIKIDO-2024-10530

AIKIDO-2024-10530

gtk is vulnerable to Use of Unmaintained Third Party Components

Use of Unmaintained Third Party Components Pre-CVE Published Dec 11, 2024

60

Medium Risk

This Affects:

rust

0.0.0 - *

Are you affected? Scan for Free

TL;DR

The gtk-rs GTK3 bindings are no longer maintained, as the maintainers have archived the repository and added a note to the crate descriptions and their README.md files indicating deprecation. Affected packages include gtk-sys, gtk3-macros, gdk-sys, gdkx11, gdkx11-sys, atk-sys, atk, gtk, gdk, gdkwayland-sys, gdkwayland, gtk-layer-shell-sys, and gtk-layer-shell. Users are advised to migrate to GTK4 bindings where possible.

Who does this affect?

You are affected if you are using this package.

Background info

gtk is vulnerable to Use of Unmaintained Third Party Components in all versions.

How to fix this

Remove any GTK3 package from your application. Please take a look at gtk4-rs instead.

60

Medium Risk

This Affects:

rust

0.0.0 - *

Are you affected? Scan for Free

Links

rustsec.org/advisories/RUSTSEC-2024-0415.html

Are You Affected?

Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.

Free. No credit card required.

Aikido Platform

Company

Resources

Industries

Use Cases

Compare

Legal

Connect

hello@aikido.dev

Security

Subscribe

Stay up to date with all updates

LinkedIn YouTube X

© 2026 Aikido Security BV | BE0792914919

Keizer Karelstraat 15, 9000, Ghent, Belgium

95 Third St, 2nd Fl, San Francisco, CA 94103, US

Unit 6.15 Runway East 18 18 Crucifix Ln, London SE1 3JW UK

Ghent, Belgium | San Francisco, US

SOC 2

ISO 27001

ISO 27001Compliant

Get Security Done