(RHSA-2020:4451) Moderate: GNOME security, bug fix, and enhancement update

2020-11-0312:05:56

access.redhat.com

0.806 High

EPSS

Percentile

98.3%

JSON

GNOME is the default desktop environment of Red Hat Enterprise Linux.

The following packages have been upgraded to a later upstream version: gnome-remote-desktop (0.1.8), pipewire (0.3.6), vte291 (0.52.4), webkit2gtk3 (2.28.4), xdg-desktop-portal (1.6.0), xdg-desktop-portal-gtk (1.6.0). (BZ#1775345, BZ#1779691, BZ#1817143, BZ#1832347, BZ#1837406)

Security Fix(es):

webkitgtk: Multiple security issues (CVE-2019-8625, CVE-2019-8710, CVE-2019-8720, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8769, CVE-2019-8771, CVE-2019-8782, CVE-2019-8783, CVE-2019-8808, CVE-2019-8811, CVE-2019-8812, CVE-2019-8813, CVE-2019-8814, CVE-2019-8815, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823, CVE-2019-8835, CVE-2019-8844, CVE-2019-8846, CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868, CVE-2020-3885, CVE-2020-3894, CVE-2020-3895, CVE-2020-3897, CVE-2020-3899, CVE-2020-3900, CVE-2020-3901, CVE-2020-3902, CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806, CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925, CVE-2020-10018, CVE-2020-11793)
gnome-settings-daemon: Red Hat Customer Portal password logged and passed as command line argument when user registers through GNOME control center (CVE-2020-14391)
LibRaw: lack of thumbnail size range check can lead to buffer overflow (CVE-2020-15503)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lepackagekit-cron< 1.1.12-6.el8PackageKit-cron-1.1.12-6.el8.ppc64le.rpm
RedHat8aarch64gvfs-fuse< 1.36.2-10.el8gvfs-fuse-1.36.2-10.el8.aarch64.rpm
RedHat8x86_64nautilus-extensions< 3.28.1-14.el8nautilus-extensions-3.28.1-14.el8.x86_64.rpm
RedHat8x86_64webkit2gtk3-jsc-debuginfo< 2.28.4-1.el8webkit2gtk3-jsc-debuginfo-2.28.4-1.el8.x86_64.rpm
RedHat8noarchgnome-shell-extension-common< 3.32.1-11.el8gnome-shell-extension-common-3.32.1-11.el8.noarch.rpm
RedHat8ppc64legnome-session-xsession< 3.28.1-10.el8gnome-session-xsession-3.28.1-10.el8.ppc64le.rpm
RedHat8aarch64gtk3-debugsource< 3.22.30-6.el8gtk3-debugsource-3.22.30-6.el8.aarch64.rpm
RedHat8x86_64frei0r-plugins-debugsource< 1.6.1-7.el8frei0r-plugins-debugsource-1.6.1-7.el8.x86_64.rpm
RedHat8ppc64lenautilus-debuginfo< 3.28.1-14.el8nautilus-debuginfo-3.28.1-14.el8.ppc64le.rpm
RedHat8ppc64lepackagekit-gstreamer-plugin-debuginfo< 1.1.12-6.el8PackageKit-gstreamer-plugin-debuginfo-1.1.12-6.el8.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	packagekit-cron	< 1.1.12-6.el8	PackageKit-cron-1.1.12-6.el8.ppc64le.rpm
RedHat	8	aarch64	gvfs-fuse	< 1.36.2-10.el8	gvfs-fuse-1.36.2-10.el8.aarch64.rpm
RedHat	8	x86_64	nautilus-extensions	< 3.28.1-14.el8	nautilus-extensions-3.28.1-14.el8.x86_64.rpm
RedHat	8	x86_64	webkit2gtk3-jsc-debuginfo	< 2.28.4-1.el8	webkit2gtk3-jsc-debuginfo-2.28.4-1.el8.x86_64.rpm
RedHat	8	noarch	gnome-shell-extension-common	< 3.32.1-11.el8	gnome-shell-extension-common-3.32.1-11.el8.noarch.rpm
RedHat	8	ppc64le	gnome-session-xsession	< 3.28.1-10.el8	gnome-session-xsession-3.28.1-10.el8.ppc64le.rpm
RedHat	8	aarch64	gtk3-debugsource	< 3.22.30-6.el8	gtk3-debugsource-3.22.30-6.el8.aarch64.rpm
RedHat	8	x86_64	frei0r-plugins-debugsource	< 1.6.1-7.el8	frei0r-plugins-debugsource-1.6.1-7.el8.x86_64.rpm
RedHat	8	ppc64le	nautilus-debuginfo	< 3.28.1-14.el8	nautilus-debuginfo-3.28.1-14.el8.ppc64le.rpm
RedHat	8	ppc64le	packagekit-gstreamer-plugin-debuginfo	< 1.1.12-6.el8	PackageKit-gstreamer-plugin-debuginfo-1.1.12-6.el8.ppc64le.rpm