Описание
Security update for gnome-shell
This update for gnome-shell fixes the following issues:
Security issue fixed:
- CVE-2019-3820: Fixed a partial lock screen bypass (bsc#1124493).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3.1
openSUSE Leap 15.1
gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3.1
gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1582-1
- SUSE Security Ratings
- SUSE Bug 1124493
- SUSE CVE CVE-2019-3820 page
Описание
It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical access to a locked workstation could invoke certain keyboard shortcuts, and potentially other actions.
Затронутые продукты
openSUSE Leap 15.0:gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3.1
openSUSE Leap 15.0:gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3.1
openSUSE Leap 15.0:gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3.1
openSUSE Leap 15.0:gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3.1
Ссылки
- CVE-2019-3820
- SUSE Bug 1124493