Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2019-3820) ELSA-2020-1021: GNOME security, bug fix, and enhancement update

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Oracle Linux: (CVE-2019-3820) ELSA-2020-1021: GNOME security, bug fix, and enhancement update

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

02/06/2019

Created

10/06/2022

Added

10/05/2022

Modified

10/05/2022

Description

It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical access to a locked workstation could invoke certain keyboard shortcuts, and potentially other actions.

Solution(s)

oracle-linux-upgrade-accountsservice
oracle-linux-upgrade-accountsservice-devel
oracle-linux-upgrade-accountsservice-libs
oracle-linux-upgrade-colord
oracle-linux-upgrade-colord-devel
oracle-linux-upgrade-colord-devel-docs
oracle-linux-upgrade-colord-extra-profiles
oracle-linux-upgrade-colord-libs
oracle-linux-upgrade-control-center
oracle-linux-upgrade-control-center-filesystem
oracle-linux-upgrade-gdm
oracle-linux-upgrade-gdm-devel
oracle-linux-upgrade-gdm-pam-extensions-devel
oracle-linux-upgrade-gnome-classic-session
oracle-linux-upgrade-gnome-online-accounts
oracle-linux-upgrade-gnome-online-accounts-devel
oracle-linux-upgrade-gnome-settings-daemon
oracle-linux-upgrade-gnome-settings-daemon-devel
oracle-linux-upgrade-gnome-shell
oracle-linux-upgrade-gnome-shell-extension-alternate-tab
oracle-linux-upgrade-gnome-shell-extension-apps-menu
oracle-linux-upgrade-gnome-shell-extension-auto-move-windows
oracle-linux-upgrade-gnome-shell-extension-common
oracle-linux-upgrade-gnome-shell-extension-dash-to-dock
oracle-linux-upgrade-gnome-shell-extension-disable-screenshield
oracle-linux-upgrade-gnome-shell-extension-drive-menu
oracle-linux-upgrade-gnome-shell-extension-extra-osk-keys
oracle-linux-upgrade-gnome-shell-extension-horizontal-workspaces
oracle-linux-upgrade-gnome-shell-extension-launch-new-instance
oracle-linux-upgrade-gnome-shell-extension-native-window-placement
oracle-linux-upgrade-gnome-shell-extension-no-hot-corner
oracle-linux-upgrade-gnome-shell-extension-panel-favorites
oracle-linux-upgrade-gnome-shell-extension-places-menu
oracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizer
oracle-linux-upgrade-gnome-shell-extension-systemmonitor
oracle-linux-upgrade-gnome-shell-extension-top-icons
oracle-linux-upgrade-gnome-shell-extension-updates-dialog
oracle-linux-upgrade-gnome-shell-extension-user-theme
oracle-linux-upgrade-gnome-shell-extension-window-grouper
oracle-linux-upgrade-gnome-shell-extension-window-list
oracle-linux-upgrade-gnome-shell-extension-windowsnavigator
oracle-linux-upgrade-gnome-shell-extension-workspace-indicator
oracle-linux-upgrade-gnome-shell-extensions
oracle-linux-upgrade-gnome-tweak-tool
oracle-linux-upgrade-gsettings-desktop-schemas
oracle-linux-upgrade-gsettings-desktop-schemas-devel
oracle-linux-upgrade-gtk-update-icon-cache
oracle-linux-upgrade-gtk3
oracle-linux-upgrade-gtk3-devel
oracle-linux-upgrade-gtk3-devel-docs
oracle-linux-upgrade-gtk3-immodule-xim
oracle-linux-upgrade-gtk3-immodules
oracle-linux-upgrade-gtk3-tests
oracle-linux-upgrade-libcanberra
oracle-linux-upgrade-libcanberra-devel
oracle-linux-upgrade-libcanberra-gtk2
oracle-linux-upgrade-libcanberra-gtk3
oracle-linux-upgrade-libgweather
oracle-linux-upgrade-libgweather-devel
oracle-linux-upgrade-libraw
oracle-linux-upgrade-libraw-devel
oracle-linux-upgrade-libraw-static
oracle-linux-upgrade-mutter
oracle-linux-upgrade-mutter-devel
oracle-linux-upgrade-nautilus
oracle-linux-upgrade-nautilus-devel
oracle-linux-upgrade-nautilus-extensions
oracle-linux-upgrade-osinfo-db
oracle-linux-upgrade-shared-mime-info
oracle-linux-upgrade-tracker
oracle-linux-upgrade-tracker-devel
oracle-linux-upgrade-tracker-docs
oracle-linux-upgrade-tracker-needle
oracle-linux-upgrade-tracker-preferences
oracle-linux-upgrade-xchat
oracle-linux-upgrade-xchat-tcl

References

ELSA-2020-1021
USN-3966-1
CVE-2019-3820

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2019-3820) ELSA-2020-1021: GNOME security, bug fix, and enhancement update

Oracle Linux: (CVE-2019-3820) ELSA-2020-1021: GNOME security, bug fix, and enhancement update

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.