GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Mon Sep 14, 2020 4:26 am Post subject: [ GLSA 202009-08 ] GNOME Shell |
 |
|
Gentoo Linux Security Advisory
Title: GNOME Shell: Information disclosure (GLSA 202009-08)
Severity: low
Exploitable: local
Date: 2020-09-13
Bug(s): #736802
ID: 202009-08
Synopsis
An information disclosure vulnerability in GNOME Shell might allow
local attackers to obtain sensitive information.
Background
GNOME Shell provides core user interface functions for the GNOME 3
desktop, like switching to windows and launching applications.
Affected Packages
Package: gnome-base/gnome-shell
Vulnerable: < 3.34.5-r1
Unaffected: >= 3.34.5-r1
Architectures: All supported architectures
Description
It was discovered that GNOME Shell incorrectly handled the login screen
password dialog.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All GNOME Shell users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=gnome-base/gnome-shell-3.34.5-r1"
|
References
CVE-2020-17489 |
|
News & Announcements
