Lucene search

K
oraclelinuxOracleLinuxELSA-2020-4451
HistoryNov 10, 2020 - 12:00 a.m.

GNOME security, bug fix, and enhancement update

2020-11-1000:00:00
linux.oracle.com
42

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

dleyna-renderer
[0.6.0-3]

  • Add a manual
    Resolves: #1612579
    frei0r-plugins
    [1.6.1-7]
  • Rebuild with newer annobin to fix rpmdiff problems
  • Fix the build with a newer opencv
  • Resolves: rhbz#1703994
    gdm
    [3.28.3-34]
  • Fix file descriptor leak
    Resolves: #1877853
    [3.28.3-33]
  • Fix problem with Xorg fallback
    Resolves: #1868260
    [3.28.3-32]
  • Add dconf db to file manifest
    Related: #1833158
    [3.28.3-31]
  • add back gdm system db to dconf profile
    Resolves: #1833158
    [3.28.3-30]
  • Make sure login screen is killed during login
    Resolves: #1618481
    gnome-control-center
    [3.28.2-22]
  • Categorize Infiniband devices correctly
    Resolves: #1826379
    [3.28.2-21]
  • Honor sound theme changes when changing from the default theme
  • Resolves: #1706008
    [3.28.2-20]
  • Fix 90min automatic sleep option to not last 80min
  • Resolves: #1706076
    gnome-photos
    [3.28.1-3]
  • Disable Python 2 during the build - itstool doesnt need it anymore
    Resolves: #1597806
    [3.28.1-2]
  • rebuild
    gnome-remote-desktop
    [0.1.8-3]
  • Backport cursor only frame fixes
    Related: #1837406
    [0.1.8-2]
  • Dont crash on metadata only buffers
    Resolves: #1847062
    [0.1.8-1]
  • Rebase to 0.1.8
    Resolves: #1837406
    gnome-session
    [3.28.1-10.0.1]
  • Update kiosk-session subpackage with Oracle references [Orabug: 32095108]
    [3.28.1-10]
  • Show cursor explicitly from session selector
    Resolves: #1624430
    [3.28.1-9]
  • Add kiosk-session subpackage to help users set up RHEL for
    kiosk/point-of-sale use.
    Resolves: #1739556
    gnome-settings-daemon
    [3.32.0-11]
  • Remove subman plugin for now
    Resolves: #1872457
    [3.32.0-10]
  • Disable subman plugin on CentOS
    Resolves: #1827030
    gnome-shell
    [3.32.2-20]
  • Fix popupMenu keynav when NumLock is active
    Resolves: #1840080
    [3.32.2-19]
  • Fix last backport
    Resolves: #1847051
    [3.32.2-18]
  • Fix more spurious allocation warnings
    Resolves: #1715845
    [3.32.2-17]
  • Really allow using perf-tool on wayland
    Resolves: #1652178
  • Fix timed login without user list
    Resolves: #1668895
  • Fix HighContrast/symbolic icon mixup
    Resolves: #1794045
  • Backport introspect API changes
    Resolves: #1837413
    [3.32.2-16]
  • Drop bad upstream patch
    Resolves: #1820760
    [3.32.2-15]
  • Improve performance under load
    Resolves: #1820760
    gnome-shell-extensions
    [3.32.1-11]
  • Adjust dash-to-dock for classic backports
    Resolves: #1805929
  • Fix inconsistent state in window-list prefs dialog
    Resolves: #1824362
    gnome-terminal
    [3.28.3-2]
  • Add a manual
  • Resolves: #1612688
    gsettings-desktop-schemas
    [3.32.0-5]
  • Recommend DejaVu Sans Mono font as the default monospace font
    Resolves: #1656262
    gtk3
    [3.22.30-6]
  • Fix reuse of list box header widgets (#rhbz1843486)
    gtk-doc
    [1.28-2]
  • Backport a patch to fix x86_64/i686 differences in generated documentation
  • Resolves: #1634770
    gvfs
    [1.36.2-10]
  • Fix libusb(x) requirements (rhbz#1866332)
    [1.36.2-9]
  • Improve enumeration performance of smb backend (rhbz#1569868)
    LibRaw
    [0.19.5-2]
  • Backport fix for CVE-2020-15503 from Fedora
    Resolves: #1853529
    libsoup
    [2.62.3-2]
  • Some WebSocket fixes to unbreak cockpit-desktop (rhbz#1872270)
    mutter
    [3.32.2-48]
  • Fix GLX stereo buffer rebase error
    Resolves: #1880339
    [3.32.2-47]
  • Fix screen sharing on wayland
    Resolves: #1873963
    [3.32.2-46]
  • Handle cursor only screen cast frames better
    Related: #1837381
    [3.32.2-45]
  • Handle GPU unplug gracefully
    Resolves: #1846191
    [3.32.2-44]
  • Dont show widow actor until explictly shown
    Resolves: #1719937
    [3.32.2-43]
  • Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
    Resolves: #1847203
    [3.32.2-42]
  • Dont pass DMA buffers if they cant be mmap():ed
    Related: #1847062
    [3.32.2-41]
  • Backport is_rendering_hardware_acclerated() API
    Related: #1837381
    [3.32.2-40]
  • Fix DMA buffer memory leak
    Related: #1837381
    [3.32.2-39]
  • Fix incorrect pipewire dependency version
    Related: #1837381
    [3.32.2-38]
  • Backport screen cast and remote desktop improvements
    Resolves: #1837381
    [3.32.2-37]
  • Fix corrupted background after suspend
    Resolves: #1828162
    nautilus
    [3.28.1-14]
  • Fix broken tracker query under certain locales (rhbz#1847061)
    [3.28.1-13]
  • Clear selection if any files dont match the pattern (rhbz#1207179)
  • Fix endless content size calculations (rhbz#1566027)
  • Honor umask when creating new files (rhbz#1778579)
  • Close ‘There is no application…’ dialog after response (rhbz#1816070)
    PackageKit
    [1.1.12-6.0.1]
  • removed rhel-Vendor.conf.patch
    [1.1.12-6]
  • Fix documentation links in Vendor.conf
  • Resolves: #1837648
    [1.1.12-5]
  • Do not shutdown the daemon on idle
  • Resolves: #1814820
    pipewire0.2
    [0.2.7-6]
  • Fix Conflicts: line
  • Remove Recommends: line, its wrong
  • Resolves: rhbz#1832347
    [0.2.7-5]
  • Fix Conflicts: line
  • Resolves: rhbz#1832347
    [0.2.7-4]
  • Add gating file
  • Resolves: rhbz#1832347
    [0.2.7-3]
  • Change source URL
  • Resolves: rhbz#1832347
    [0.2.7-2]
  • Add compat -devel package
    [0.2.7-1]
  • First version
  • Fix bluez5 plugins build
    pipewire
    [0.3.6-1]
  • Update to 0.3.6
  • Resolves: rhbz#1832347
    [0.3.5-3]
  • Rebuild
  • Resolves: rhbz#1832347
    [0.3.5-2]
  • Disable vulkan
  • Resolves: rhbz#1832347
    [0.3.5-1]
  • Update to 0.3.5
  • Disable pulse and jack
  • Add patch to work with meson 0.49
  • Add patch to fix neon compilation
  • Resolves: rhbz#1832347
    potrace
    [1.15-3]
  • Fixing build for flatpak (rhbz#1840788)
    pygobject3
    [3.28.3-2]
  • Add lock to avoid two type object wrappers getting generated at
    the same time in multi-threaded programs.
    Resolves: #1844578
    tracker
    [2.1.5-2]
  • Rebuild to include tracker-devel in CRB
  • Resolves: #1758891
    vte291
    [0.52.4-2]
  • Avoid overriding -fno-exceptions
    Resolves: #1804719
    [0.52.4-1]
  • Update to 0.52.4
    Resolves: #1804719
    webkit2gtk3
    [2.28.4-1]
  • Update to 2.28.4
  • Related: #1817143
    [2.28.2-2]
  • Related: rhbz#1817143 Properly remove webkit2gtk3-plugin-process-gtk2 package
    [2.28.2-1]
  • Resolves: rhbz#1817143 Update to 2.28.2
    webrtc-audio-processing
    [0.3-9]
  • Rebuild to address Annobin coverage issues
    Resolves: #1704148
    xdg-desktop-portal
    [1.6.0-2]
  • Require pipewire0.2-libs for legacy application support.
    Resolves: #1854734
    [1.6.0-1]
  • Rebase to 1.6.0 (#1775345)
  • Backport PipeWire 0.3 support (#1775345)
  • Backport fixes (#1775345)
    xdg-desktop-portal-gtk
    [1.6.0-1]
  • Rebase to 1.6.0 (#1837413)
  • Bump supported Mutter screen cast API version (#1837413)
  • Backport bugfix (#1837413)

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C