10 matches found
RHEL 7 : gnome-desktop3 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gnome-desktop: thumbnailer security bypass CVE-2019-11460 Note that Nessus has not tested for this issue but has...
RHEL 7 : gnome-desktop (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gnome-desktop: thumbnailer security bypass CVE-2019-11460 Note that Nessus has not tested for this issue but has...
SUSE CVE-2019-11460
An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's...
openSUSE 15 Security Update : gnome-desktop (SUSE-SU-2022:3837-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:3837-1 advisory. - CVE-2019-11460: Fixed sandbox issue that allowed bypassing from a compromised thumbnailer bsc1133043. Tenable has extracted the preceding description block...
openSUSE Security Update : flatpak (openSUSE-2019-2038)
This update for flatpak fixes the following issues : Security issues fixed : - CVE-2019-8308: Fixed a potential sandbox escape via /proc bsc1125431. - CVE-2019-11460: Fixed a compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl...
openSUSE: Security Advisory for flatpak (openSUSE-SU-2019:2038-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED15 / SLES15 Security Update : flatpak (SUSE-SU-2019:2185-1)
This update for flatpak fixes the following issues : Security issues fixed : CVE-2019-8308: Fixed a potential sandbox escape via /proc bsc1125431. CVE-2019-11460: Fixed a compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl bsc1133043...
SUSE-SU-2019:2185-1 Security update for flatpak
This update for flatpak fixes the following issues: Security issues fixed: - CVE-2019-8308: Fixed a potential sandbox escape via /proc bsc1125431. - CVE-2019-11460: Fixed a compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl bsc1133043...
Fedora 29 : gnome-desktop3 (2019-992622684b)
gnome-desktop 3.30.2.3 release, fixing thumbnailer sandbox escape, CVE-2019-11460 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
CVE-2019-11460
The provided data confirms a sandbox escape risk in GNOME Nautilus and GNOME desktop thumbnailers due to improper TIOCSTI handling on 64‑bit systems. Affected: GNOME Nautilus 3.30 before 3.30.6 and 3.32 before 3.32.1; GNOME gnome-desktop 3.26, 3.28, 3.30 before 3.30.2.2, and 3.32 before 3.32.1.1....