Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-11793: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Oracle Linux: CVE-2020-11793: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

04/16/2020

Created

10/09/2020

Added

10/07/2020

Modified

07/22/2024

Description

A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash). A use-after-free flaw exists in WebKitGTK. This flaw allows remote attackers to execute arbitrary code or cause a denial of service.

Solution(s)

oracle-linux-upgrade-buildah
oracle-linux-upgrade-dleyna-renderer
oracle-linux-upgrade-frei0r-devel
oracle-linux-upgrade-frei0r-plugins
oracle-linux-upgrade-frei0r-plugins-opencv
oracle-linux-upgrade-gdm
oracle-linux-upgrade-gnome-classic-session
oracle-linux-upgrade-gnome-control-center
oracle-linux-upgrade-gnome-control-center-filesystem
oracle-linux-upgrade-gnome-photos
oracle-linux-upgrade-gnome-photos-tests
oracle-linux-upgrade-gnome-remote-desktop
oracle-linux-upgrade-gnome-session
oracle-linux-upgrade-gnome-session-wayland-session
oracle-linux-upgrade-gnome-session-xsession
oracle-linux-upgrade-gnome-settings-daemon
oracle-linux-upgrade-gnome-shell
oracle-linux-upgrade-gnome-shell-extension-apps-menu
oracle-linux-upgrade-gnome-shell-extension-auto-move-windows
oracle-linux-upgrade-gnome-shell-extension-common
oracle-linux-upgrade-gnome-shell-extension-dash-to-dock
oracle-linux-upgrade-gnome-shell-extension-desktop-icons
oracle-linux-upgrade-gnome-shell-extension-disable-screenshield
oracle-linux-upgrade-gnome-shell-extension-drive-menu
oracle-linux-upgrade-gnome-shell-extension-horizontal-workspaces
oracle-linux-upgrade-gnome-shell-extension-launch-new-instance
oracle-linux-upgrade-gnome-shell-extension-native-window-placement
oracle-linux-upgrade-gnome-shell-extension-no-hot-corner
oracle-linux-upgrade-gnome-shell-extension-panel-favorites
oracle-linux-upgrade-gnome-shell-extension-places-menu
oracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizer
oracle-linux-upgrade-gnome-shell-extension-systemmonitor
oracle-linux-upgrade-gnome-shell-extension-top-icons
oracle-linux-upgrade-gnome-shell-extension-updates-dialog
oracle-linux-upgrade-gnome-shell-extension-user-theme
oracle-linux-upgrade-gnome-shell-extension-window-grouper
oracle-linux-upgrade-gnome-shell-extension-window-list
oracle-linux-upgrade-gnome-shell-extension-windowsnavigator
oracle-linux-upgrade-gnome-shell-extension-workspace-indicator
oracle-linux-upgrade-gnome-terminal
oracle-linux-upgrade-gnome-terminal-nautilus
oracle-linux-upgrade-gsettings-desktop-schemas
oracle-linux-upgrade-gsettings-desktop-schemas-devel
oracle-linux-upgrade-gtk3
oracle-linux-upgrade-gtk3-devel
oracle-linux-upgrade-gtk3-immodule-xim
oracle-linux-upgrade-gtk-doc
oracle-linux-upgrade-gtk-update-icon-cache
oracle-linux-upgrade-gvfs
oracle-linux-upgrade-gvfs-afc
oracle-linux-upgrade-gvfs-afp
oracle-linux-upgrade-gvfs-archive
oracle-linux-upgrade-gvfs-client
oracle-linux-upgrade-gvfs-devel
oracle-linux-upgrade-gvfs-fuse
oracle-linux-upgrade-gvfs-goa
oracle-linux-upgrade-gvfs-gphoto2
oracle-linux-upgrade-gvfs-mtp
oracle-linux-upgrade-gvfs-smb
oracle-linux-upgrade-libraw
oracle-linux-upgrade-libraw-devel
oracle-linux-upgrade-libsoup
oracle-linux-upgrade-libsoup-devel
oracle-linux-upgrade-mutter
oracle-linux-upgrade-mutter-devel
oracle-linux-upgrade-nautilus
oracle-linux-upgrade-nautilus-devel
oracle-linux-upgrade-nautilus-extensions
oracle-linux-upgrade-packagekit
oracle-linux-upgrade-packagekit-command-not-found
oracle-linux-upgrade-packagekit-cron
oracle-linux-upgrade-packagekit-glib
oracle-linux-upgrade-packagekit-glib-devel
oracle-linux-upgrade-packagekit-gstreamer-plugin
oracle-linux-upgrade-packagekit-gtk3-module
oracle-linux-upgrade-pipewire
oracle-linux-upgrade-pipewire0-2-devel
oracle-linux-upgrade-pipewire0-2-libs
oracle-linux-upgrade-pipewire-devel
oracle-linux-upgrade-pipewire-doc
oracle-linux-upgrade-pipewire-libs
oracle-linux-upgrade-pipewire-utils
oracle-linux-upgrade-potrace
oracle-linux-upgrade-pygobject3-devel
oracle-linux-upgrade-python3-gobject
oracle-linux-upgrade-python3-gobject-base
oracle-linux-upgrade-tracker
oracle-linux-upgrade-tracker-devel
oracle-linux-upgrade-vte291
oracle-linux-upgrade-vte291-devel
oracle-linux-upgrade-vte-profile
oracle-linux-upgrade-webkit2gtk3
oracle-linux-upgrade-webkit2gtk3-devel
oracle-linux-upgrade-webkit2gtk3-jsc
oracle-linux-upgrade-webkit2gtk3-jsc-devel
oracle-linux-upgrade-webkitgtk4
oracle-linux-upgrade-webkitgtk4-devel
oracle-linux-upgrade-webkitgtk4-doc
oracle-linux-upgrade-webkitgtk4-jsc
oracle-linux-upgrade-webkitgtk4-jsc-devel
oracle-linux-upgrade-webrtc-audio-processing
oracle-linux-upgrade-xdg-desktop-portal
oracle-linux-upgrade-xdg-desktop-portal-gtk

References

https://attackerkb.com/topics/cve-2020-11793
CVE - 2020-11793
ELSA-2020-4451
ELSA-2020-4035

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-11793: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Oracle Linux: CVE-2020-11793: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.