vulnerability
Oracle Linux: CVE-2019-12795: ELSA-2019-3553: GNOME security, bug fix, and enhancement update (LOW) (Multiple Advisories)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
4 | (AV:L/AC:H/Au:S/C:P/I:P/A:P) | Jun 5, 2019 | Oct 5, 2022 | Nov 30, 2024 |
Severity
4
CVSS
(AV:L/AC:H/Au:S/C:P/I:P/A:P)
Published
Jun 5, 2019
Added
Oct 5, 2022
Modified
Nov 30, 2024
Description
daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. A local attacker could connect to this server socket and issue D-Bus method calls. (Note that the server socket only accepts a single connection, so the attacker would have to discover the server and connect to the socket before its owner does.)
Solution(s)
oracle-linux-upgrade-accountsserviceoracle-linux-upgrade-accountsservice-develoracle-linux-upgrade-accountsservice-libsoracle-linux-upgrade-appstream-dataoracle-linux-upgrade-baobaboracle-linux-upgrade-chrome-gnome-shelloracle-linux-upgrade-evinceoracle-linux-upgrade-evince-browser-pluginoracle-linux-upgrade-evince-libsoracle-linux-upgrade-evince-nautilusoracle-linux-upgrade-file-rolleroracle-linux-upgrade-gdk-pixbuf2oracle-linux-upgrade-gdk-pixbuf2-develoracle-linux-upgrade-gdk-pixbuf2-modulesoracle-linux-upgrade-gdk-pixbuf2-xliboracle-linux-upgrade-gdk-pixbuf2-xlib-develoracle-linux-upgrade-gdmoracle-linux-upgrade-gjsoracle-linux-upgrade-gjs-develoracle-linux-upgrade-gnome-classic-sessionoracle-linux-upgrade-gnome-control-centeroracle-linux-upgrade-gnome-control-center-filesystemoracle-linux-upgrade-gnome-desktop3oracle-linux-upgrade-gnome-desktop3-develoracle-linux-upgrade-gnome-remote-desktoporacle-linux-upgrade-gnome-settings-daemonoracle-linux-upgrade-gnome-shelloracle-linux-upgrade-gnome-shell-extension-apps-menuoracle-linux-upgrade-gnome-shell-extension-auto-move-windowsoracle-linux-upgrade-gnome-shell-extension-commonoracle-linux-upgrade-gnome-shell-extension-dash-to-dockoracle-linux-upgrade-gnome-shell-extension-desktop-iconsoracle-linux-upgrade-gnome-shell-extension-disable-screenshieldoracle-linux-upgrade-gnome-shell-extension-drive-menuoracle-linux-upgrade-gnome-shell-extension-horizontal-workspacesoracle-linux-upgrade-gnome-shell-extension-launch-new-instanceoracle-linux-upgrade-gnome-shell-extension-native-window-placementoracle-linux-upgrade-gnome-shell-extension-no-hot-corneroracle-linux-upgrade-gnome-shell-extension-panel-favoritesoracle-linux-upgrade-gnome-shell-extension-places-menuoracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizeroracle-linux-upgrade-gnome-shell-extension-systemmonitororacle-linux-upgrade-gnome-shell-extension-top-iconsoracle-linux-upgrade-gnome-shell-extension-updates-dialogoracle-linux-upgrade-gnome-shell-extension-user-themeoracle-linux-upgrade-gnome-shell-extension-window-grouperoracle-linux-upgrade-gnome-shell-extension-window-listoracle-linux-upgrade-gnome-shell-extension-windowsnavigatororacle-linux-upgrade-gnome-shell-extension-workspace-indicatororacle-linux-upgrade-gnome-softwareoracle-linux-upgrade-gnome-software-editororacle-linux-upgrade-gnome-tweaksoracle-linux-upgrade-gsettings-desktop-schemasoracle-linux-upgrade-gsettings-desktop-schemas-develoracle-linux-upgrade-gtk3oracle-linux-upgrade-gtk3-develoracle-linux-upgrade-gtk3-immodule-ximoracle-linux-upgrade-gtk-update-icon-cacheoracle-linux-upgrade-gvfsoracle-linux-upgrade-gvfs-afcoracle-linux-upgrade-gvfs-afporacle-linux-upgrade-gvfs-archiveoracle-linux-upgrade-gvfs-clientoracle-linux-upgrade-gvfs-develoracle-linux-upgrade-gvfs-fuseoracle-linux-upgrade-gvfs-goaoracle-linux-upgrade-gvfs-gphoto2oracle-linux-upgrade-gvfs-mtporacle-linux-upgrade-gvfs-smboracle-linux-upgrade-libpurpleoracle-linux-upgrade-libpurple-develoracle-linux-upgrade-mozjs60oracle-linux-upgrade-mozjs60-develoracle-linux-upgrade-mutteroracle-linux-upgrade-mutter-develoracle-linux-upgrade-nautilusoracle-linux-upgrade-nautilus-develoracle-linux-upgrade-nautilus-extensionsoracle-linux-upgrade-pangooracle-linux-upgrade-pango-develoracle-linux-upgrade-pidginoracle-linux-upgrade-pidgin-develoracle-linux-upgrade-plymouthoracle-linux-upgrade-plymouth-core-libsoracle-linux-upgrade-plymouth-graphics-libsoracle-linux-upgrade-plymouth-plugin-fade-throbberoracle-linux-upgrade-plymouth-plugin-labeloracle-linux-upgrade-plymouth-plugin-scriptoracle-linux-upgrade-plymouth-plugin-space-flaresoracle-linux-upgrade-plymouth-plugin-throbgressoracle-linux-upgrade-plymouth-plugin-two-steporacle-linux-upgrade-plymouth-scriptsoracle-linux-upgrade-plymouth-system-themeoracle-linux-upgrade-plymouth-theme-chargeoracle-linux-upgrade-plymouth-theme-fade-inoracle-linux-upgrade-plymouth-theme-scriptoracle-linux-upgrade-plymouth-theme-solaroracle-linux-upgrade-plymouth-theme-spinfinityoracle-linux-upgrade-plymouth-theme-spinneroracle-linux-upgrade-sdloracle-linux-upgrade-sdl-develoracle-linux-upgrade-wayland-protocols-develoracle-linux-upgrade-webkit2gtk3oracle-linux-upgrade-webkit2gtk3-develoracle-linux-upgrade-webkit2gtk3-jscoracle-linux-upgrade-webkit2gtk3-jsc-develoracle-linux-upgrade-webkit2gtk3-plugin-process-gtk2

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.