GNOME security, bug fix, and enhancement update

2020-11-1000:00:00

linux.oracle.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

dleyna-renderer
[0.6.0-3]

Add a manual
Resolves: #1612579
frei0r-plugins
[1.6.1-7]
Rebuild with newer annobin to fix rpmdiff problems
Fix the build with a newer opencv
Resolves: rhbz#1703994
gdm
[3.28.3-34]
Fix file descriptor leak
Resolves: #1877853
[3.28.3-33]
Fix problem with Xorg fallback
Resolves: #1868260
[3.28.3-32]
Add dconf db to file manifest
Related: #1833158
[3.28.3-31]
add back gdm system db to dconf profile
Resolves: #1833158
[3.28.3-30]
Make sure login screen is killed during login
Resolves: #1618481
gnome-control-center
[3.28.2-22]
Categorize Infiniband devices correctly
Resolves: #1826379
[3.28.2-21]
Honor sound theme changes when changing from the default theme
Resolves: #1706008
[3.28.2-20]
Fix 90min automatic sleep option to not last 80min
Resolves: #1706076
gnome-photos
[3.28.1-3]
Disable Python 2 during the build - itstool doesnt need it anymore
Resolves: #1597806
[3.28.1-2]
rebuild
gnome-remote-desktop
[0.1.8-3]
Backport cursor only frame fixes
Related: #1837406
[0.1.8-2]
Dont crash on metadata only buffers
Resolves: #1847062
[0.1.8-1]
Rebase to 0.1.8
Resolves: #1837406
gnome-session
[3.28.1-10.0.1]
Update kiosk-session subpackage with Oracle references [Orabug: 32095108]
[3.28.1-10]
Show cursor explicitly from session selector
Resolves: #1624430
[3.28.1-9]
Add kiosk-session subpackage to help users set up RHEL for
kiosk/point-of-sale use.
Resolves: #1739556
gnome-settings-daemon
[3.32.0-11]
Remove subman plugin for now
Resolves: #1872457
[3.32.0-10]
Disable subman plugin on CentOS
Resolves: #1827030
gnome-shell
[3.32.2-20]
Fix popupMenu keynav when NumLock is active
Resolves: #1840080
[3.32.2-19]
Fix last backport
Resolves: #1847051
[3.32.2-18]
Fix more spurious allocation warnings
Resolves: #1715845
[3.32.2-17]
Really allow using perf-tool on wayland
Resolves: #1652178
Fix timed login without user list
Resolves: #1668895
Fix HighContrast/symbolic icon mixup
Resolves: #1794045
Backport introspect API changes
Resolves: #1837413
[3.32.2-16]
Drop bad upstream patch
Resolves: #1820760
[3.32.2-15]
Improve performance under load
Resolves: #1820760
gnome-shell-extensions
[3.32.1-11]
Adjust dash-to-dock for classic backports
Resolves: #1805929
Fix inconsistent state in window-list prefs dialog
Resolves: #1824362
gnome-terminal
[3.28.3-2]
Add a manual
Resolves: #1612688
gsettings-desktop-schemas
[3.32.0-5]
Recommend DejaVu Sans Mono font as the default monospace font
Resolves: #1656262
gtk3
[3.22.30-6]
Fix reuse of list box header widgets (#rhbz1843486)
gtk-doc
[1.28-2]
Backport a patch to fix x86_64/i686 differences in generated documentation
Resolves: #1634770
gvfs
[1.36.2-10]
Fix libusb(x) requirements (rhbz#1866332)
[1.36.2-9]
Improve enumeration performance of smb backend (rhbz#1569868)
LibRaw
[0.19.5-2]
Backport fix for CVE-2020-15503 from Fedora
Resolves: #1853529
libsoup
[2.62.3-2]
Some WebSocket fixes to unbreak cockpit-desktop (rhbz#1872270)
mutter
[3.32.2-48]
Fix GLX stereo buffer rebase error
Resolves: #1880339
[3.32.2-47]
Fix screen sharing on wayland
Resolves: #1873963
[3.32.2-46]
Handle cursor only screen cast frames better
Related: #1837381
[3.32.2-45]
Handle GPU unplug gracefully
Resolves: #1846191
[3.32.2-44]
Dont show widow actor until explictly shown
Resolves: #1719937
[3.32.2-43]
Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
Resolves: #1847203
[3.32.2-42]
Dont pass DMA buffers if they cant be mmap():ed
Related: #1847062
[3.32.2-41]
Backport is_rendering_hardware_acclerated() API
Related: #1837381
[3.32.2-40]
Fix DMA buffer memory leak
Related: #1837381
[3.32.2-39]
Fix incorrect pipewire dependency version
Related: #1837381
[3.32.2-38]
Backport screen cast and remote desktop improvements
Resolves: #1837381
[3.32.2-37]
Fix corrupted background after suspend
Resolves: #1828162
nautilus
[3.28.1-14]
Fix broken tracker query under certain locales (rhbz#1847061)
[3.28.1-13]
Clear selection if any files dont match the pattern (rhbz#1207179)
Fix endless content size calculations (rhbz#1566027)
Honor umask when creating new files (rhbz#1778579)
Close ‘There is no application…’ dialog after response (rhbz#1816070)
PackageKit
[1.1.12-6.0.1]
removed rhel-Vendor.conf.patch
[1.1.12-6]
Fix documentation links in Vendor.conf
Resolves: #1837648
[1.1.12-5]
Do not shutdown the daemon on idle
Resolves: #1814820
pipewire0.2
[0.2.7-6]
Fix Conflicts: line
Remove Recommends: line, its wrong
Resolves: rhbz#1832347
[0.2.7-5]
Fix Conflicts: line
Resolves: rhbz#1832347
[0.2.7-4]
Add gating file
Resolves: rhbz#1832347
[0.2.7-3]
Change source URL
Resolves: rhbz#1832347
[0.2.7-2]
Add compat -devel package
[0.2.7-1]
First version
Fix bluez5 plugins build
pipewire
[0.3.6-1]
Update to 0.3.6
Resolves: rhbz#1832347
[0.3.5-3]
Rebuild
Resolves: rhbz#1832347
[0.3.5-2]
Disable vulkan
Resolves: rhbz#1832347
[0.3.5-1]
Update to 0.3.5
Disable pulse and jack
Add patch to work with meson 0.49
Add patch to fix neon compilation
Resolves: rhbz#1832347
potrace
[1.15-3]
Fixing build for flatpak (rhbz#1840788)
pygobject3
[3.28.3-2]
Add lock to avoid two type object wrappers getting generated at
the same time in multi-threaded programs.
Resolves: #1844578
tracker
[2.1.5-2]
Rebuild to include tracker-devel in CRB
Resolves: #1758891
vte291
[0.52.4-2]
Avoid overriding -fno-exceptions
Resolves: #1804719
[0.52.4-1]
Update to 0.52.4
Resolves: #1804719
webkit2gtk3
[2.28.4-1]
Update to 2.28.4
Related: #1817143
[2.28.2-2]
Related: rhbz#1817143 Properly remove webkit2gtk3-plugin-process-gtk2 package
[2.28.2-1]
Resolves: rhbz#1817143 Update to 2.28.2
webrtc-audio-processing
[0.3-9]
Rebuild to address Annobin coverage issues
Resolves: #1704148
xdg-desktop-portal
[1.6.0-2]
Require pipewire0.2-libs for legacy application support.
Resolves: #1854734
[1.6.0-1]
Rebase to 1.6.0 (#1775345)
Backport PipeWire 0.3 support (#1775345)
Backport fixes (#1775345)
xdg-desktop-portal-gtk
[1.6.0-1]
Rebase to 1.6.0 (#1837413)
Bump supported Mutter screen cast API version (#1837413)
Backport bugfix (#1837413)

OSVersionArchitecturePackageVersionFilename
oracle linux8srcpackagekit< 1.1.12-6.0.1.el8PackageKit-1.1.12-6.0.1.el8.src.rpm
oracle linux8srcfrei0r-plugins< 1.6.1-7.el8frei0r-plugins-1.6.1-7.el8.src.rpm
oracle linux8srcgdm< 3.28.3-34.el8gdm-3.28.3-34.el8.src.rpm
oracle linux8srcgnome-control-center< 3.28.2-22.el8gnome-control-center-3.28.2-22.el8.src.rpm
oracle linux8srcgnome-remote-desktop< 0.1.8-3.el8gnome-remote-desktop-0.1.8-3.el8.src.rpm
oracle linux8srcgnome-session< 3.28.1-10.0.1.el8gnome-session-3.28.1-10.0.1.el8.src.rpm
oracle linux8srcgnome-settings-daemon< 3.32.0-11.el8gnome-settings-daemon-3.32.0-11.el8.src.rpm
oracle linux8srcgnome-shell< 3.32.2-20.el8gnome-shell-3.32.2-20.el8.src.rpm
oracle linux8srcgnome-shell-extensions< 3.32.1-11.el8gnome-shell-extensions-3.32.1-11.el8.src.rpm
oracle linux8srcgnome-terminal< 3.28.3-2.el8gnome-terminal-3.28.3-2.el8.src.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	8	src	packagekit	< 1.1.12-6.0.1.el8	PackageKit-1.1.12-6.0.1.el8.src.rpm
oracle linux	8	src	frei0r-plugins	< 1.6.1-7.el8	frei0r-plugins-1.6.1-7.el8.src.rpm
oracle linux	8	src	gdm	< 3.28.3-34.el8	gdm-3.28.3-34.el8.src.rpm
oracle linux	8	src	gnome-control-center	< 3.28.2-22.el8	gnome-control-center-3.28.2-22.el8.src.rpm
oracle linux	8	src	gnome-remote-desktop	< 0.1.8-3.el8	gnome-remote-desktop-0.1.8-3.el8.src.rpm
oracle linux	8	src	gnome-session	< 3.28.1-10.0.1.el8	gnome-session-3.28.1-10.0.1.el8.src.rpm
oracle linux	8	src	gnome-settings-daemon	< 3.32.0-11.el8	gnome-settings-daemon-3.32.0-11.el8.src.rpm
oracle linux	8	src	gnome-shell	< 3.32.2-20.el8	gnome-shell-3.32.2-20.el8.src.rpm
oracle linux	8	src	gnome-shell-extensions	< 3.32.1-11.el8	gnome-shell-extensions-3.32.1-11.el8.src.rpm
oracle linux	8	src	gnome-terminal	< 3.28.3-2.el8	gnome-terminal-3.28.3-2.el8.src.rpm