Lucene search
RedHatRHSA-2019:1517HistoryJun 18, 2019 - 4:34 p.m.
(RHSA-2019:1517) Moderate: gvfs security update
2019-06-1816:34:27
access.redhat.com
17
0.001 Low
EPSS
Percentile
30.8%
GVFS is the GNOME Desktop Virtual File System layer that allows users to easily access local and remote data using File Transfer Protocol (FTP), Secure Shell File Transfer Protocol (SFTP), Web Distributed Authoring and Versioning (WebDAV), Common Internet File System (CIFS), Server Message Block (SMB), and other protocols. GVFS integrates with the GNOME I/O (GIO) abstraction layer.
Security Fix(es):
- gvfs: Incorrect authorization in admin backend allows privileged users to read and modify arbitrary files without prompting for password (CVE-2019-3827)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | s390x | gvfs-archive-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-archive-debuginfo-1.36.2-2.el8_0.1.s390x.rpm |
| RedHat | 8 | aarch64 | gvfs-goa-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-goa-debuginfo-1.36.2-2.el8_0.1.aarch64.rpm |
| RedHat | 8 | i686 | gvfs-fuse-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-fuse-debuginfo-1.36.2-2.el8_0.1.i686.rpm |
| RedHat | 8 | ppc64le | gvfs-smb | < 1.36.2-2.el8_0.1 | gvfs-smb-1.36.2-2.el8_0.1.ppc64le.rpm |
| RedHat | 8 | aarch64 | gvfs-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-debuginfo-1.36.2-2.el8_0.1.aarch64.rpm |
| RedHat | 8 | x86_64 | gvfs-smb-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-smb-debuginfo-1.36.2-2.el8_0.1.x86_64.rpm |
| RedHat | 8 | ppc64le | gvfs-fuse-debuginfo | < 1.36.2-2.el8_0.1 | gvfs-fuse-debuginfo-1.36.2-2.el8_0.1.ppc64le.rpm |
| RedHat | 8 | ppc64le | gvfs-mtp | < 1.36.2-2.el8_0.1 | gvfs-mtp-1.36.2-2.el8_0.1.ppc64le.rpm |
| RedHat | 8 | x86_64 | gvfs-afp | < 1.36.2-2.el8_0.1 | gvfs-afp-1.36.2-2.el8_0.1.x86_64.rpm |
| RedHat | 8 | i686 | gvfs-debugsource | < 1.36.2-2.el8_0.1 | gvfs-debugsource-1.36.2-2.el8_0.1.i686.rpm |
Related
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : gvfs Vulnerability (NS-SA-2019-0224)
2019-12-02 00:00:00
Scientific Linux Security Update : gvfs on SL7.x x86_64 (20190806)
2019-08-27 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : gvfs Vulnerability (NS-SA-2019-0238)
2019-12-31 00:00:00
openvas
openvas
openSUSE: Security Advisory for gvfs (openSUSE-SU-2019:0261-1)
2019-02-28 00:00:00
Ubuntu: Security Advisory (USN-3888-1)
2019-02-13 00:00:00
Mageia: Security Advisory (MGASA-2019-0080)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2019-3827
2019-03-25 18:29:00
oraclelinux
oraclelinux
gvfs security and bug fix update
2019-08-13 00:00:00
gvfs security update
2019-07-30 00:00:00
GNOME security, bug fix, and enhancement update
2019-11-14 00:00:00
mageia
mageia
Updated gvfs packages fix security vulnerability
2019-02-14 11:38:16
osv
osv
CVE-2019-3827
2019-03-25 18:29:00
veracode
veracode
Incorrect Permission Check
2019-08-08 00:07:53
redhat
redhat
(RHSA-2019:2145) Moderate: gvfs security and bug fix update
2019-08-06 08:06:27
ubuntucve
ubuntucve
CVE-2019-3827
2019-02-11 00:00:00
cve
cve
CVE-2019-3827
2019-03-25 18:29:00
cvelist
cvelist
CVE-2019-3827
2019-03-25 17:47:35
suse
suse
Security update for gvfs (important)
2019-02-27 00:00:00
nvd
nvd
CVE-2019-3827
2019-03-25 18:29:00
prion
prion
Design/Logic Flaw
2019-03-25 18:29:00
redhatcve
redhatcve
CVE-2019-3827
2019-10-10 04:08:08
centos
centos
gvfs security update
2019-08-30 02:58:14
ubuntu
ubuntu
GVfs vulnerability
2019-02-12 00:00:00