openSUSE-SU-2019:1529-1

Опубликовано: 07 июн. 2019

Источник: suse-cvrf

Описание

Security update for gnome-shell

This update for gnome-shell fixes the following issues:

Security issue fixed:

CVE-2019-3820: Fixed a partial lock screen bypass (bsc#1124493).

Fixed bugs:

Remove sessionList of endSessionDialog for security reasons (jsc#SLE-6660).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

gnome-shell-3.20.4-22.1

gnome-shell-browser-plugin-3.20.4-22.1

gnome-shell-calendar-3.20.4-22.1

gnome-shell-devel-3.20.4-22.1

gnome-shell-lang-3.20.4-22.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00023.html
E-Mail link for openSUSE-SU-2019:1529-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical access to a locked workstation could invoke certain keyboard shortcuts, and potentially other actions.

Затронутые продукты

openSUSE Leap 42.3:gnome-shell-3.20.4-22.1

openSUSE Leap 42.3:gnome-shell-browser-plugin-3.20.4-22.1

openSUSE Leap 42.3:gnome-shell-calendar-3.20.4-22.1

openSUSE Leap 42.3:gnome-shell-devel-3.20.4-22.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-3820.html
CVE-2019-3820
https://bugzilla.suse.com/1124493
SUSE Bug 1124493

openSUSE-SU-2019:1529-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2019-3820

Описание

Затронутые продукты

Ссылки