Описание
ELSA-2024-5298: gnome-shell security update (MODERATE)
[3.32.2-56]
- Only open portal login in response to user action Resolves: RHEL-39097
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
gnome-shell
3.32.2-56.el8_10
Oracle Linux x86_64
gnome-shell
3.32.2-56.el8_10
Связанные CVE
Связанные уязвимости
In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.
In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.
In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.
In GNOME Shell through 45.7, a portal helper can be launched automatic ...
