Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SciLinux: SLSA-2019-2145-1 Moderate: gvfs Incorrect Authorization Issue

Calendar Aug 26, 2019 User Avatar LinuxSecurity Advisories
1 - 2 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate security fix file access authorization issue administrative privileges gvfs
gvfs: Incorrect authorization in admin backend allows privileged users to read and modify arbitrary files without prompting for password (CVE-2019-3827) SL7 x86_64 gvfs-1.36.2-3.el7.i686.rpm gvfs-smb-1.36.2-3.el7.x86_64.rpm gvfs-afp-1.36.2-3.el7.x86_64.rpm gvfs-mtp-1.36.2-3.el7.x86_64.rpm gvfs-devel-1.36.2-3.el7.x86_64.rpm gvfs-client-1.36.2-3.el7.x86_64.rpm gvfs [More...] 
Synopsis: Moderate: gvfs security and bug fix update
Advisory ID:       SLSA-2019:2145-1
Issue Date:        2019-08-06
CVE Numbers:       CVE-2019-3827
--

Security Fix(es):

* gvfs: Incorrect authorization in admin backend allows privileged usersto read and modify arbitrary files without prompting for password
(CVE-2019-3827)
--

SL7
  x86_64
    gvfs-1.36.2-3.el7.i686.rpm
    gvfs-smb-1.36.2-3.el7.x86_64.rpm
    gvfs-afp-1.36.2-3.el7.x86_64.rpm
    gvfs-mtp-1.36.2-3.el7.x86_64.rpm
    gvfs-devel-1.36.2-3.el7.x86_64.rpm
    gvfs-client-1.36.2-3.el7.x86_64.rpm
    gvfs-gphoto2-1.36.2-3.el7.x86_64.rpm
    gvfs-1.36.2-3.el7.x86_64.rpm
    gvfs-devel-1.36.2-3.el7.i686.rpm
    gvfs-client-1.36.2-3.el7.i686.rpm
    gvfs-afc-1.36.2-3.el7.x86_64.rpm
    gvfs-goa-1.36.2-3.el7.x86_64.rpm
    gvfs-fuse-1.36.2-3.el7.x86_64.rpm
    gvfs-archive-1.36.2-3.el7.x86_64.rpm
    gvfs-tests-1.36.2-3.el7.x86_64.rpm
    gvfs-debuginfo-1.36.2-3.el7.i686.rpm
    gvfs-debuginfo-1.36.2-3.el7.x86_64.rpm

- Scientific Linux Development Team
Your message here