Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

RedHat: RHSA-2020-1021-01 Moderate: GNOME Lock Screen Bypass

red hat
Calendar Grey March 31, 2020
Dist Redhat Esm H88
Cautious security notice for GNOME within Red Hat systems. Contains patches and information regarding a vulnerability related to lock screen circumvention.
An update for GNOME is now available for Red Hat Enterprise Linux 7

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Summary

GNOME is the default desktop environment of Red Hat Enterprise Linux.
Security Fix(es):
* gnome-shell: partial lock screen bypass (CVE-2019-3820)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.

Topics%20covered

Topics Covered

security advisory Red Hat Enterprise Linux moderate impact desktop environment gdm bug fix GNOME update lock screen bypass

References

https://access.redhat.com/security/cve/CVE-2019-3820 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/7/html/7.8_release_notes/index

Package List

Red Hat Enterprise Linux Client (v. 7):
Source: LibRaw-0.19.4-1.el7.src.rpm accountsservice-0.6.50-7.el7.src.rpm colord-1.3.4-2.el7.src.rpm control-center-3.28.1-6.el7.src.rpm gdm-3.28.2-22.el7.src.rpm gnome-online-accounts-3.28.2-1.el7.src.rpm gnome-settings-daemon-3.28.1-8.el7.src.rpm gnome-shell-3.28.3-24.el7.src.rpm gnome-shell-extensions-3.28.1-11.el7.src.rpm gnome-tweak-tool-3.28.1-7.el7.src.rpm gsettings-desktop-schemas-3.28.0-3.el7.src.rpm gtk3-3.22.30-5.el7.src.rpm libcanberra-0.30-9.el7.src.rpm libgweather-3.28.2-3.el7.src.rpm mutter-3.28.3-20.el7.src.rpm nautilus-3.26.3.1-7.el7.src.rpm osinfo-db-20190805-2.el7.src.rpm shared-mime-info-1.8-5.el7.src.rpm tracker-1.10.5-8.el7.src.rpm xchat-2.8.8-25.el7.src.rpm
noarch: gnome-classic-session-3.28.1-11.el7.noarch.rpm gnome-shell-extension-alternate-tab-3.28.1-11.el7.noarch.rpm gnome-shell-extension-apps-menu-3.28.1-11.el7.noarch.rpm gnome-shell-extension-common-3.28.1-11.el7.noarch.rpm gnome-shell-extension-horizontal-workspaces-3.28.1-11.el7.noarch.rpm gnome-shell-extension-launch-new-instance-3.28.1-11.el7.noarch.rpm gnome-shell-extension-places-menu-3.28.1-11.el7.noarch.rpm gnome-shell-extension-top-icons-3.28.1-11.el7.noarch.rpm gnome-shell-extension-user-theme-3.28.1-11.el7.noarch.rpm

Read the Full Advisory


Advisory ID: RHSA-2020:1021-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:1021
Issue date: 2020-03-31

Topic

An update for GNOME is now available for Red Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory Red Hat Enterprise Linux moderate impact desktop environment gdm bug fix GNOME update lock screen bypass

Relevant Releases Architectures

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64

Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64

Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64

Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64

Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64

Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64

Bugs Fixed

1421231 - error in default configurations: Cd-WARNING **: failed to get session [pid 1408]: Unknown error -2

1474305 - Tracker-extract gives permission denied error in log file

1506370 - [RFE] disable show text in GDM login screen/lock screen

1547158 - postsession script not executed on reboot/shutdown

1556776 - Name "org.gnome.Mutter.DisplayConfig" does not exist

1556800 - libcanberra-login-sound.desktop: Failed to play sound: File or data not found

1583836 - Not able to unlock Gnome screen with SmartCard using Coolkey

1607839 - Invisible panel is made visible on click between Setting and Toggle button

1624461 - gnome-shell crashes in meta_window_get_monitor, processing an unmanaged window

1630686 - Window title bar shows garbled characters1632904 - On screen keyboard not visible to access with gtk apps

1638727 - gnome-shell crashed with SIGSEGV in meta_monitor_mode_get_resolution()

1646345 - tracker-miner-fs killed by SIGABRT when connected from remote machine with XDMCP

1657887 - mouse buttons stop responding after rapid input

1669391 - CVE-2019-3820 gnome-shell: partial lock screen bypass

1672289 - gnome-control-center thunderbolt-cc-panel-WARNING Could not create client Error calling StartServiceByName for org.freedesktop.bolt: GDBus.Error:org.freedesktop.systemd1.UnitMasked: Unit is masked. Memory fault(coredump)

1674534 - Rebase to 3.28.2

Read the Full Advisory

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here