RLSA-2019:3553
- Source
- https://errata.rockylinux.org/RLSA-2019:3553
- Import Source
- https://storage.googleapis.com/resf-osv-data/RLSA-2019:3553.json
- JSON Data
- https://api.osv.dev/v1/vulns/RLSA-2019:3553
- Related
- Published
- 2019-11-05T17:59:21Z
- Modified
- 2023-02-02T12:50:31.813955Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Low: GNOME security, bug fix, and enhancement update
- Details
-
GNOME is the default desktop environment of Rocky Linux.
Security Fix(es):
evince: uninitialized memory use in function tiffdocumentrender() and tiffdocumentget_thumbnail() (CVE-2019-11459)
gvfs: improper authorization in daemon/gvfsdaemon.c in gvfsd (CVE-2019-12795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section.
- References
-
- https://errata.rockylinux.org/RLSA-2019:3553
- https://bugzilla.redhat.com/show_bug.cgi?id=1662193
- https://bugzilla.redhat.com/show_bug.cgi?id=1667136
- https://bugzilla.redhat.com/show_bug.cgi?id=1673011
- https://bugzilla.redhat.com/show_bug.cgi?id=1674382
- https://bugzilla.redhat.com/show_bug.cgi?id=1679127
- https://bugzilla.redhat.com/show_bug.cgi?id=1680164
- https://bugzilla.redhat.com/show_bug.cgi?id=1685811
- https://bugzilla.redhat.com/show_bug.cgi?id=1687949
- https://bugzilla.redhat.com/show_bug.cgi?id=1690506
- https://bugzilla.redhat.com/show_bug.cgi?id=1696708
- https://bugzilla.redhat.com/show_bug.cgi?id=1698520
- https://bugzilla.redhat.com/show_bug.cgi?id=1698884
- https://bugzilla.redhat.com/show_bug.cgi?id=1698923
- https://bugzilla.redhat.com/show_bug.cgi?id=1698929
- https://bugzilla.redhat.com/show_bug.cgi?id=1698930
- https://bugzilla.redhat.com/show_bug.cgi?id=1704355
- https://bugzilla.redhat.com/show_bug.cgi?id=1704360
- https://bugzilla.redhat.com/show_bug.cgi?id=1704378
- https://bugzilla.redhat.com/show_bug.cgi?id=1705583
- https://bugzilla.redhat.com/show_bug.cgi?id=1706793
- https://bugzilla.redhat.com/show_bug.cgi?id=1709937
- https://bugzilla.redhat.com/show_bug.cgi?id=1713080
- https://bugzilla.redhat.com/show_bug.cgi?id=1713330
- https://bugzilla.redhat.com/show_bug.cgi?id=1713453
- https://bugzilla.redhat.com/show_bug.cgi?id=1713685
- https://bugzilla.redhat.com/show_bug.cgi?id=1715738
- https://bugzilla.redhat.com/show_bug.cgi?id=1715761
- https://bugzilla.redhat.com/show_bug.cgi?id=1715765
- https://bugzilla.redhat.com/show_bug.cgi?id=1716295
- https://bugzilla.redhat.com/show_bug.cgi?id=1716771
- https://bugzilla.redhat.com/show_bug.cgi?id=1718133
- https://bugzilla.redhat.com/show_bug.cgi?id=1719241
- https://bugzilla.redhat.com/show_bug.cgi?id=1719279
- https://bugzilla.redhat.com/show_bug.cgi?id=1719779
- https://bugzilla.redhat.com/show_bug.cgi?id=1720481
- https://bugzilla.redhat.com/show_bug.cgi?id=1721195
- https://bugzilla.redhat.com/show_bug.cgi?id=1721575
- https://bugzilla.redhat.com/show_bug.cgi?id=1722047
- https://bugzilla.redhat.com/show_bug.cgi?id=1722844
- https://bugzilla.redhat.com/show_bug.cgi?id=1723467
- https://bugzilla.redhat.com/show_bug.cgi?id=1723836
- https://bugzilla.redhat.com/show_bug.cgi?id=1724551
- https://bugzilla.redhat.com/show_bug.cgi?id=1725101
- https://bugzilla.redhat.com/show_bug.cgi?id=1725107
- https://bugzilla.redhat.com/show_bug.cgi?id=1725120
- https://bugzilla.redhat.com/show_bug.cgi?id=1725555
- https://bugzilla.redhat.com/show_bug.cgi?id=1725741
- https://bugzilla.redhat.com/show_bug.cgi?id=1725766
- https://bugzilla.redhat.com/show_bug.cgi?id=1725854
- https://bugzilla.redhat.com/show_bug.cgi?id=1726093
- https://bugzilla.redhat.com/show_bug.cgi?id=1726505
- https://bugzilla.redhat.com/show_bug.cgi?id=1726656
- https://bugzilla.redhat.com/show_bug.cgi?id=1728277
- https://bugzilla.redhat.com/show_bug.cgi?id=1731372
- https://bugzilla.redhat.com/show_bug.cgi?id=1735382
- https://bugzilla.redhat.com/show_bug.cgi?id=1737326
- https://bugzilla.redhat.com/show_bug.cgi?id=1739116
- https://bugzilla.redhat.com/show_bug.cgi?id=1739117
- https://bugzilla.redhat.com/show_bug.cgi?id=1741547
- Credits
-
-
- Rocky Enterprise Software Foundation
-
- Red Hat
-
Affected packages
Rocky Linux:8 / pidgin
Package
- Name
- pidgin
- Purl
- pkg:rpm/rocky-linux/pidgin?distro=rocky-linux-8&epoch=0
Rocky Linux:8 / gdk-pixbuf2
Package
- Name
- gdk-pixbuf2
- Purl
- pkg:rpm/rocky-linux/gdk-pixbuf2?distro=rocky-linux-8&epoch=0
Rocky Linux:8 / gnome-desktop3
Package
- Name
- gnome-desktop3
- Purl
- pkg:rpm/rocky-linux/gnome-desktop3?distro=rocky-linux-8&epoch=0
Rocky Linux:8 / pango
Package
- Name
- pango
- Purl
- pkg:rpm/rocky-linux/pango?distro=rocky-linux-8-4-legacy&epoch=0