(RHSA-2020:1021) Moderate: GNOME security, bug fix, and enhancement update

2020-03-3109:09:34

access.redhat.com

134

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

4.3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

EPSS

0.001

Percentile

44.4%

JSON

GNOME is the default desktop environment of Red Hat Enterprise Linux.

Security Fix(es):

gnome-shell: partial lock screen bypass (CVE-2019-3820)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64gtk3-devel-docs< 3.22.30-5.el7gtk3-devel-docs-3.22.30-5.el7.x86_64.rpm
RedHat7ppc64libcanberra< 0.30-9.el7libcanberra-0.30-9.el7.ppc64.rpm
RedHat7i686gdm-pam-extensions-devel< 3.28.2-22.el7gdm-pam-extensions-devel-3.28.2-22.el7.i686.rpm
RedHat7i686accountsservice-devel< 0.6.50-7.el7accountsservice-devel-0.6.50-7.el7.i686.rpm
RedHat7s390xgnome-online-accounts-devel< 3.28.2-1.el7gnome-online-accounts-devel-3.28.2-1.el7.s390x.rpm
RedHat7ppc64legtk3-tests< 3.22.30-5.el7gtk3-tests-3.22.30-5.el7.ppc64le.rpm
RedHat7i686tracker< 1.10.5-8.el7tracker-1.10.5-8.el7.i686.rpm
RedHat7x86_64libgweather< 3.28.2-3.el7libgweather-3.28.2-3.el7.x86_64.rpm
RedHat7noarchgnome-tweak-tool< 3.28.1-7.el7gnome-tweak-tool-3.28.1-7.el7.noarch.rpm
RedHat7ppcnautilus-extensions< 3.26.3.1-7.el7nautilus-extensions-3.26.3.1-7.el7.ppc.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	gtk3-devel-docs	< 3.22.30-5.el7	gtk3-devel-docs-3.22.30-5.el7.x86_64.rpm
RedHat	7	ppc64	libcanberra	< 0.30-9.el7	libcanberra-0.30-9.el7.ppc64.rpm
RedHat	7	i686	gdm-pam-extensions-devel	< 3.28.2-22.el7	gdm-pam-extensions-devel-3.28.2-22.el7.i686.rpm
RedHat	7	i686	accountsservice-devel	< 0.6.50-7.el7	accountsservice-devel-0.6.50-7.el7.i686.rpm
RedHat	7	s390x	gnome-online-accounts-devel	< 3.28.2-1.el7	gnome-online-accounts-devel-3.28.2-1.el7.s390x.rpm
RedHat	7	ppc64le	gtk3-tests	< 3.22.30-5.el7	gtk3-tests-3.22.30-5.el7.ppc64le.rpm
RedHat	7	i686	tracker	< 1.10.5-8.el7	tracker-1.10.5-8.el7.i686.rpm
RedHat	7	x86_64	libgweather	< 3.28.2-3.el7	libgweather-3.28.2-3.el7.x86_64.rpm
RedHat	7	noarch	gnome-tweak-tool	< 3.28.1-7.el7	gnome-tweak-tool-3.28.1-7.el7.noarch.rpm
RedHat	7	ppc	nautilus-extensions	< 3.26.3.1-7.el7	nautilus-extensions-3.26.3.1-7.el7.ppc.rpm