Описание
Security update for gdm
This update for gdm fixes the following issues:
- CVE-2020-16125: Fixed a privilege escalation (bsc#1178150).
Список пакетов
HPE Helion OpenStack 8
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Enterprise Storage 5
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP2-BCL
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP2-LTSS
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP3-BCL
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP3-LTSS
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP4-LTSS
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server 12 SP5
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server for SAP Applications 12 SP2
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server for SAP Applications 12 SP4
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE Linux Enterprise Software Development Kit 12 SP5
gdm-devel-3.10.0.1-54.17.2
SUSE OpenStack Cloud 7
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE OpenStack Cloud 8
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE OpenStack Cloud 9
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE OpenStack Cloud Crowbar 8
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
SUSE OpenStack Cloud Crowbar 9
gdm-3.10.0.1-54.17.2
gdm-lang-3.10.0.1-54.17.2
gdmflexiserver-3.10.0.1-54.17.2
libgdm1-3.10.0.1-54.17.2
typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2
Ссылки
- Link for SUSE-SU-2020:3614-1
- E-Mail link for SUSE-SU-2020:3614-1
- SUSE Security Ratings
- SUSE Bug 1178150
- SUSE CVE CVE-2020-16125 page
Описание
gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can't contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be be chained with an additional issue that could allow a local user to create a new privileged account.
Затронутые продукты
HPE Helion OpenStack 8:gdm-3.10.0.1-54.17.2
HPE Helion OpenStack 8:gdm-lang-3.10.0.1-54.17.2
HPE Helion OpenStack 8:gdmflexiserver-3.10.0.1-54.17.2
HPE Helion OpenStack 8:libgdm1-3.10.0.1-54.17.2
Ссылки
- CVE-2020-16125
- SUSE Bug 1140851
- SUSE Bug 1178150