Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2020-14391) ELSA-2020-4451: GNOME security, bug fix, and enhancement update

Back to Search

Oracle Linux: (CVE-2020-14391) ELSA-2020-4451: GNOME security, bug fix, and enhancement update

Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
11/10/2020
Created
11/14/2020
Added
11/12/2020
Modified
02/16/2021

Description

A flaw was found in the GNOME Control Center in Red Hat Enterprise Linux 8 versions prior to 8.2, where it improperly uses Red Hat Customer Portal credentials when a user registers a system through the GNOME Settings User Interface. This flaw allows a local attacker to discover the Red Hat Customer Portal password. The highest threat from this vulnerability is to confidentiality.

Solution(s)

  • oracle-linux-upgrade-dleyna-renderer
  • oracle-linux-upgrade-frei0r-devel
  • oracle-linux-upgrade-frei0r-plugins
  • oracle-linux-upgrade-frei0r-plugins-opencv
  • oracle-linux-upgrade-gdm
  • oracle-linux-upgrade-gnome-classic-session
  • oracle-linux-upgrade-gnome-control-center
  • oracle-linux-upgrade-gnome-control-center-filesystem
  • oracle-linux-upgrade-gnome-photos
  • oracle-linux-upgrade-gnome-photos-tests
  • oracle-linux-upgrade-gnome-remote-desktop
  • oracle-linux-upgrade-gnome-session
  • oracle-linux-upgrade-gnome-session-wayland-session
  • oracle-linux-upgrade-gnome-session-xsession
  • oracle-linux-upgrade-gnome-settings-daemon
  • oracle-linux-upgrade-gnome-shell
  • oracle-linux-upgrade-gnome-shell-extension-apps-menu
  • oracle-linux-upgrade-gnome-shell-extension-auto-move-windows
  • oracle-linux-upgrade-gnome-shell-extension-common
  • oracle-linux-upgrade-gnome-shell-extension-dash-to-dock
  • oracle-linux-upgrade-gnome-shell-extension-desktop-icons
  • oracle-linux-upgrade-gnome-shell-extension-disable-screenshield
  • oracle-linux-upgrade-gnome-shell-extension-drive-menu
  • oracle-linux-upgrade-gnome-shell-extension-horizontal-workspaces
  • oracle-linux-upgrade-gnome-shell-extension-launch-new-instance
  • oracle-linux-upgrade-gnome-shell-extension-native-window-placement
  • oracle-linux-upgrade-gnome-shell-extension-no-hot-corner
  • oracle-linux-upgrade-gnome-shell-extension-panel-favorites
  • oracle-linux-upgrade-gnome-shell-extension-places-menu
  • oracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizer
  • oracle-linux-upgrade-gnome-shell-extension-systemmonitor
  • oracle-linux-upgrade-gnome-shell-extension-top-icons
  • oracle-linux-upgrade-gnome-shell-extension-updates-dialog
  • oracle-linux-upgrade-gnome-shell-extension-user-theme
  • oracle-linux-upgrade-gnome-shell-extension-window-grouper
  • oracle-linux-upgrade-gnome-shell-extension-window-list
  • oracle-linux-upgrade-gnome-shell-extension-windowsnavigator
  • oracle-linux-upgrade-gnome-shell-extension-workspace-indicator
  • oracle-linux-upgrade-gnome-shell-extensions
  • oracle-linux-upgrade-gnome-terminal
  • oracle-linux-upgrade-gnome-terminal-nautilus
  • oracle-linux-upgrade-gsettings-desktop-schemas
  • oracle-linux-upgrade-gsettings-desktop-schemas-devel
  • oracle-linux-upgrade-gtk-doc
  • oracle-linux-upgrade-gtk-update-icon-cache
  • oracle-linux-upgrade-gtk3
  • oracle-linux-upgrade-gtk3-devel
  • oracle-linux-upgrade-gtk3-immodule-xim
  • oracle-linux-upgrade-gvfs
  • oracle-linux-upgrade-gvfs-afc
  • oracle-linux-upgrade-gvfs-afp
  • oracle-linux-upgrade-gvfs-archive
  • oracle-linux-upgrade-gvfs-client
  • oracle-linux-upgrade-gvfs-devel
  • oracle-linux-upgrade-gvfs-fuse
  • oracle-linux-upgrade-gvfs-goa
  • oracle-linux-upgrade-gvfs-gphoto2
  • oracle-linux-upgrade-gvfs-mtp
  • oracle-linux-upgrade-gvfs-smb
  • oracle-linux-upgrade-libraw
  • oracle-linux-upgrade-libraw-devel
  • oracle-linux-upgrade-libsoup
  • oracle-linux-upgrade-libsoup-devel
  • oracle-linux-upgrade-mutter
  • oracle-linux-upgrade-mutter-devel
  • oracle-linux-upgrade-nautilus
  • oracle-linux-upgrade-nautilus-devel
  • oracle-linux-upgrade-nautilus-extensions
  • oracle-linux-upgrade-packagekit
  • oracle-linux-upgrade-packagekit-command-not-found
  • oracle-linux-upgrade-packagekit-cron
  • oracle-linux-upgrade-packagekit-glib
  • oracle-linux-upgrade-packagekit-glib-devel
  • oracle-linux-upgrade-packagekit-gstreamer-plugin
  • oracle-linux-upgrade-packagekit-gtk3-module
  • oracle-linux-upgrade-pipewire
  • oracle-linux-upgrade-pipewire-devel
  • oracle-linux-upgrade-pipewire-doc
  • oracle-linux-upgrade-pipewire-libs
  • oracle-linux-upgrade-pipewire-utils
  • oracle-linux-upgrade-pipewire0-2
  • oracle-linux-upgrade-pipewire0-2-devel
  • oracle-linux-upgrade-pipewire0-2-libs
  • oracle-linux-upgrade-potrace
  • oracle-linux-upgrade-pygobject3
  • oracle-linux-upgrade-pygobject3-devel
  • oracle-linux-upgrade-python3-gobject
  • oracle-linux-upgrade-python3-gobject-base
  • oracle-linux-upgrade-tracker
  • oracle-linux-upgrade-tracker-devel
  • oracle-linux-upgrade-vte-profile
  • oracle-linux-upgrade-vte291
  • oracle-linux-upgrade-vte291-devel
  • oracle-linux-upgrade-webkit2gtk3
  • oracle-linux-upgrade-webkit2gtk3-devel
  • oracle-linux-upgrade-webkit2gtk3-jsc
  • oracle-linux-upgrade-webkit2gtk3-jsc-devel
  • oracle-linux-upgrade-webrtc-audio-processing
  • oracle-linux-upgrade-xdg-desktop-portal
  • oracle-linux-upgrade-xdg-desktop-portal-gtk

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;