Arch Linux Security Advisory ASA-201905-3
========================================
Severity: High
Date    : 2019-05-06
CVE-ID  : CVE-2019-11461
Package : nautilus
Type    : sandbox escape
Remote  : No
Link    : https://security.archlinux.org/AVG-956

Summary
======
The package nautilus before version 3.32.1-1 is vulnerable to sandbox
escape.

Resolution
=========
Upgrade to 3.32.1-1.

# pacman -Syu "nautilus>=3.32.1-1"

The problem has been fixed upstream in version 3.32.1.

Workaround
=========
None.

Description
==========
An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.32
prior to 3.32.1. A compromised thumbnailer may escape the bubblewrap
sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push
characters into the input buffer of the thumbnailer's controlling
terminal, allowing an attacker to escape the sandbox if the thumbnailer
has a controlling terminal. This is due to improper filtering of the
TIOCSTI ioctl on 64-bit systems, similar to CVE-2019-10063.

Impact
=====
A local attacker is able to escape the sandbox.

References
=========
https://gitlab.gnome.org/GNOME/nautilus/-/issues/987
https://gitlab.gnome.org/GNOME/nautilus/-/commit/2ddba428ef2b13d0620bd599c3635b9c11044659
https://security.archlinux.org/CVE-2019-11461

ArchLinux: 201905-3: nautilus: sandbox escape

May 7, 2019

Summary

An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.32 prior to 3.32.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's controlling terminal, allowing an attacker to escape the sandbox if the thumbnailer has a controlling terminal. This is due to improper filtering of the TIOCSTI ioctl on 64-bit systems, similar to CVE-2019-10063.

Resolution

Upgrade to 3.32.1-1. # pacman -Syu "nautilus>=3.32.1-1"
The problem has been fixed upstream in version 3.32.1.

References

https://gitlab.gnome.org/GNOME/nautilus/-/issues/987 https://gitlab.gnome.org/GNOME/nautilus/-/commit/2ddba428ef2b13d0620bd599c3635b9c11044659 https://security.archlinux.org/CVE-2019-11461

Severity
Package : nautilus
Type : sandbox escape
Remote : No
Link : https://security.archlinux.org/AVG-956

Workaround

None.

Related News

1.Penguin Landscape Esm H320
1 - 2 min read
A critical vulnerability was discovered in the Linux kernel's netfilter subsystem, specifically within the nf_tables component, posing potential
19.Laptop Bed Esm H320
2 - 3 min read
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary
23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved