drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Eingabeprüfung in GNOME Shell
Name: |
Mangelnde Eingabeprüfung in GNOME Shell |
|
ID: |
USN-3966-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 18.04 LTS, Ubuntu 18.10 |
|
Datum: |
Mo, 6. Mai 2019, 21:05 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3820 |
|
Applikationen: |
GNOME |
|
Originalnachricht |
--===============3881827180356183151== Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="=-hCkemW62bhUGEu3Gngx2"
--=-hCkemW62bhUGEu3Gngx2 Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-3966-1 May 06, 2019
gnome-shell vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 18.10 - Ubuntu 18.04 LTS
Summary:
GNOME Shell could be made to execute keyboard shortcuts and other actions while the workstation was locked.
Software Description: - gnome-shell: graphical shell for the GNOME desktop
Details:
It was discovered that the GNOME Shell incorrectly handled certain keyboard inputs. An attacker could possibly use this issue to invoke keyboard shortcuts, and potentially other actions while the workstation was locked.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 18.10: gnome-shell 3.30.2-0ubuntu1.18.10.2
Ubuntu 18.04 LTS: gnome-shell 3.28.3+git20190124-0ubuntu18.04.2
After a standard system update you need to reboot your computer to make all the necessary changes.
References: https://usn.ubuntu.com/usn/usn-3966-1 CVE-2019-3820
Package Information: https://launchpad.net/ubuntu/+source/gnome-shell/3.30.2-0ubuntu1.18.10.2 https://launchpad.net/ubuntu/+source/gnome-shell/3.28.3+git20190124-0ubuntu18.04.2 --=-hCkemW62bhUGEu3Gngx2 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE----- Version: GnuPG v2
iQIcBAABCAAGBQJc0FBnAAoJEEW851uECx9pXXgP/R1qTfh2mRjDP1CbaMcm14le 6zfZ3g4kBpuEJZ8mjTB3VFFXkZmJqf9Fj4gnM4DNEEoQ79+x9mnoxU8HyzcfvpI0 ERn71hp6KnMhjVTBRvlPCvG9WZzvjDsCHgT7mrnhcv74mmsHRt6AikYafN1Macpb tRjtkv75pRXqjEIJ+ukijPB6M+nAfoxNF9M+4G4Bxf+cMzLuP2M5YTnJ+8HxOawQ y4t10fCcGOB7adx/EizH+JxGhIqsi8EG2cEVZkzED0sYYcYZAkCE41j5Ab0W+xfy /iJz+xsFn4d0KDyS3z3fntYodsW0sAsKSmoAm1XjLPEtpdw2bbyxOMRsvCUeWh7R jjQ2T44KIyxcLNyf7wEWpQzygKoIY3xGN0NmpNuuT5kA0EtTnohqPP2pctghy6M0 +OOl7Se9sKzX09LRAX5aPEFyBGcmX5/TSxvsdsCBnj1qoqZhqUcTmnGYoed7IsTB 85AmZWoaySUglkEPdYSmglE8iSLgh/HKeNZfqBnH84un++ojXv3nMOrTog3waUYc 7OnrooJKmexkdCIWG5QQTrfY9J0+c8Kkz2HfqjTNe4X3kzQxEe4s4wPlF/gF4Nrd AY9zM8kpfnK5mES+C68x9mxqLmi0gem7Qmgd9Uk0oAA3J0I6dNKKNFU+HjOwH8fi bVi/0at6f66ssjkg4Eij =oOkO -----END PGP SIGNATURE-----
--=-hCkemW62bhUGEu3Gngx2--
--===============3881827180356183151== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5 LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj dXJpdHktYW5ub3VuY2UK
--===============3881827180356183151==--
|
|
|
|