Mageia: 2021-0316 Critical: Gnome-Shell Password Exposure Issue

mageia

July 8, 2021

An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4

Summary

An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password shown in cleartext at login time, it is then visible for a brief moment upon a logout. (If the password were never shown in cleartext, only the password length is revealed.) (CVE-2020-17489).

References

- https://bugs.mageia.org/show_bug.cgi?id=27303

- https://lists.debian.org/debian-lts-announce/2020/09/msg00014.html

- https://www.cve.org/CVERecord?id=CVE-2020-17489

Topics Covered

security advisory critical issue security fix password exposure gnome-shell login security Mageia

Resolution

SRPMS

- 7/core/gnome-shell-3.32.1-2.2.mga7

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 08 Jul 2021

URL: https://advisories.mageia.org/MGASA-2021-0316.html

Type: security

CVE: CVE-2020-17489

Topics Covered

security advisory critical issue security fix password exposure gnome-shell login security Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia: 2021-0316 Critical: Gnome-Shell Password Exposure Issue

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia: 2021-0316 Critical: Gnome-Shell Password Exposure Issue

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!