Mangelnde Eingabeprüfung in gnome-shell
ID: | SUSE-SU-2019:1459-1 |
Distribution: | SUSE |
Plattformen: | SUSE Linux Enterprise Module for Desktop Applications 15, SUSE Linux Enterprise Workstation Extension 15, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1, SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Workstation Extension 15-SP1 |
Datum: | Di, 11. Juni 2019, 22:17 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3820 |
Applikationen: | GNOME |
Originalnachricht |
|
SUSE Security Update: Security update for gnome-shell ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:1459-1 Rating: moderate References: #1124493 Cross-References: CVE-2019-3820 Affected Products: SUSE Linux Enterprise Workstation Extension 15-SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Desktop Applications 15-SP1 SUSE Linux Enterprise Module for Desktop Applications 15 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for gnome-shell fixes the following issues: Security issue fixed: - CVE-2019-3820: Fixed a partial lock screen bypass (bsc#1124493). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 15-SP1: zypper in -t patch SUSE-SLE-Product-WE-15-SP1-2019-1459=1 - SUSE Linux Enterprise Workstation Extension 15: zypper in -t patch SUSE-SLE-Product-WE-15-2019-1459=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-1459=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2019-1459=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP1-2019-1459=1 - SUSE Linux Enterprise Module for Desktop Applications 15: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-2019-1459=1 Package List: - SUSE Linux Enterprise Workstation Extension 15-SP1 (x86_64): gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-calendar-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Workstation Extension 15 (x86_64): gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-calendar-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 ppc64le s390x x86_64): gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-browser-plugin-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64): gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-browser-plugin-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (aarch64 ppc64le s390x x86_64): gnome-shell-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-devel-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (noarch): gnome-shell-lang-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Desktop Applications 15 (aarch64 ppc64le s390x x86_64): gnome-shell-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debuginfo-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-debugsource-3.26.2+20180130.0d9c74212-4.19.2 gnome-shell-devel-3.26.2+20180130.0d9c74212-4.19.2 - SUSE Linux Enterprise Module for Desktop Applications 15 (noarch): gnome-shell-lang-3.26.2+20180130.0d9c74212-4.19.2 References: https://www.suse.com/security/cve/CVE-2019-3820.html https://bugzilla.suse.com/1124493 _______________________________________________ sle-security-updates mailing list sle-security-updates@lists.suse.com http://lists.suse.com/mailman/listinfo/sle-security-updates |