Oval Definition:oval:com.redhat.rhsa:def:20211586
Revision Date:2021-05-18Version:640
Title:RHSA-2021:1586: GNOME security, bug fix, and enhancement update (Moderate)
Description:GNOME is the default desktop environment of Red Hat Enterprise Linux.

  • The following packages have been upgraded to a later upstream version: accountsservice (0.6.55), webkit2gtk3 (2.30.4). (BZ#1846376, BZ#1883304)

    Security Fix(es):

  • webkitgtk: type confusion may lead to arbitrary code execution (CVE-2020-9948)

  • webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-9951)

  • webkitgtk: out-of-bounds write may lead to code execution (CVE-2020-9983)

  • webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-13543)

  • webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-13584)

  • glib2: insecure permissions for files and directories (CVE-2019-13012)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2019-13012
    CVE-2020-13543
    CVE-2020-13584
    CVE-2020-16125
    CVE-2020-9948
    CVE-2020-9951
    CVE-2020-9983
    CVE-2021-1817
    CVE-2021-1820
    CVE-2021-1825
    CVE-2021-1826
    CVE-2021-30661
    RHSA-2021:1586
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • glib2 is earlier than 0:2.56.4-9.el8
  • AND glib2 is signed with Red Hat redhatrelease2 key
  • glib2-devel is earlier than 0:2.56.4-9.el8
  • AND glib2-devel is signed with Red Hat redhatrelease2 key
  • glib2-doc is earlier than 0:2.56.4-9.el8
  • AND glib2-doc is signed with Red Hat redhatrelease2 key
  • glib2-fam is earlier than 0:2.56.4-9.el8
  • AND glib2-fam is signed with Red Hat redhatrelease2 key
  • glib2-static is earlier than 0:2.56.4-9.el8
  • AND glib2-static is signed with Red Hat redhatrelease2 key
  • glib2-tests is earlier than 0:2.56.4-9.el8
  • AND glib2-tests is signed with Red Hat redhatrelease2 key
  • webkit2gtk3 is earlier than 0:2.30.4-1.el8
  • AND webkit2gtk3 is signed with Red Hat redhatrelease2 key
  • webkit2gtk3-devel is earlier than 0:2.30.4-1.el8
  • AND webkit2gtk3-devel is signed with Red Hat redhatrelease2 key
  • webkit2gtk3-jsc is earlier than 0:2.30.4-1.el8
  • AND webkit2gtk3-jsc is signed with Red Hat redhatrelease2 key
  • webkit2gtk3-jsc-devel is earlier than 0:2.30.4-1.el8
  • AND webkit2gtk3-jsc-devel is signed with Red Hat redhatrelease2 key
  • gdm is earlier than 1:3.28.3-39.el8
  • AND gdm is signed with Red Hat redhatrelease2 key
    • BACK