ALSA-2021:1586

[ALSA-2021:1586] Moderate: GNOME security, bug fix, and enhancement update

Type:

security

Severity:

moderate

Release date:

2021-11-12

Description:

GNOME is the default desktop environment of AlmaLinux.

The following packages have been upgraded to a later upstream version: accountsservice (0.6.55), webkit2gtk3 (2.30.4). (BZ#1846376, BZ#1883304)

Security Fix(es):

* webkitgtk: type confusion may lead to arbitrary code execution (CVE-2020-9948)

* webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-9951)

* webkitgtk: out-of-bounds write may lead to code execution (CVE-2020-9983)

* webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-13543)

* webkitgtk: use-after-free may lead to arbitrary code execution (CVE-2020-13584)

* glib2: insecure permissions for files and directories (CVE-2019-13012)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages:

glibmm24-2.56.0-2.el8.i686.rpm
gtk2-immodule-xim-2.24.32-5.el8.x86_64.rpm
dleyna-server-0.6.0-3.el8.x86_64.rpm
gnome-photos-3.28.1-4.el8.x86_64.rpm
gnome-photos-tests-3.28.1-4.el8.x86_64.rpm
gnome-terminal-nautilus-3.28.3-3.el8.x86_64.rpm
gtk2-devel-2.24.32-5.el8.i686.rpm
cairomm-1.12.0-8.el8.x86_64.rpm
geoclue2-libs-2.5.5-2.el8.x86_64.rpm
pangomm-2.40.1-6.el8.x86_64.rpm
chrome-gnome-shell-10.1-7.el8.x86_64.rpm
gtkmm24-2.24.5-6.el8.i686.rpm
enchant2-2.2.3-3.el8.i686.rpm
gvfs-smb-1.36.2-11.el8.x86_64.rpm
dleyna-core-0.6.0-3.el8.x86_64.rpm
libsigc++20-2.10.0-6.el8.i686.rpm
gtk2-immodules-2.24.32-5.el8.i686.rpm
pangomm-2.40.1-6.el8.i686.rpm
gvfs-client-1.36.2-11.el8.x86_64.rpm
gnome-boxes-3.36.5-8.el8.x86_64.rpm
OpenEXR-libs-2.2.0-12.el8.i686.rpm
geocode-glib-devel-3.26.0-3.el8.i686.rpm
libdazzle-3.28.5-2.el8.x86_64.rpm
gvfs-archive-1.36.2-11.el8.x86_64.rpm
atkmm-2.24.2-7.el8.i686.rpm
gvfs-afp-1.36.2-11.el8.x86_64.rpm
gvfs-mtp-1.36.2-11.el8.x86_64.rpm
gvfs-goa-1.36.2-11.el8.x86_64.rpm
libvisual-0.4.0-25.el8.i686.rpm
gvfs-1.36.2-11.el8.x86_64.rpm
geoclue2-demos-2.5.5-2.el8.x86_64.rpm
gnome-terminal-3.28.3-3.el8.x86_64.rpm
gtkmm30-3.22.2-3.el8.x86_64.rpm
gtk2-2.24.32-5.el8.i686.rpm
gvfs-afc-1.36.2-11.el8.x86_64.rpm
gtk2-2.24.32-5.el8.x86_64.rpm
gvfs-devel-1.36.2-11.el8.i686.rpm
geocode-glib-devel-3.26.0-3.el8.x86_64.rpm
woff2-1.0.2-5.el8.x86_64.rpm
gvfs-gphoto2-1.36.2-11.el8.x86_64.rpm
gjs-1.56.2-5.el8.x86_64.rpm
gtk2-devel-docs-2.24.32-5.el8.x86_64.rpm
geocode-glib-3.26.0-3.el8.x86_64.rpm
gtkmm24-2.24.5-6.el8.x86_64.rpm
atkmm-2.24.2-7.el8.x86_64.rpm
geoclue2-2.5.5-2.el8.x86_64.rpm
soundtouch-2.0.0-3.el8.i686.rpm
gjs-1.56.2-5.el8.i686.rpm
soundtouch-2.0.0-3.el8.x86_64.rpm
libdazzle-3.28.5-2.el8.i686.rpm
woff2-1.0.2-5.el8.i686.rpm
geoclue2-libs-2.5.5-2.el8.i686.rpm
geocode-glib-3.26.0-3.el8.i686.rpm
gtk2-immodule-xim-2.24.32-5.el8.i686.rpm
gvfs-client-1.36.2-11.el8.i686.rpm
cairomm-1.12.0-8.el8.i686.rpm
libepubgen-0.1.0-3.el8.i686.rpm
enchant2-2.2.3-3.el8.x86_64.rpm
nautilus-extensions-3.28.1-15.el8.x86_64.rpm
gvfs-fuse-1.36.2-11.el8.x86_64.rpm
gtk2-immodules-2.24.32-5.el8.x86_64.rpm
gtkmm30-3.22.2-3.el8.i686.rpm
nautilus-3.28.1-15.el8.x86_64.rpm
dleyna-core-0.6.0-3.el8.i686.rpm
geoclue2-2.5.5-2.el8.i686.rpm
OpenEXR-libs-2.2.0-12.el8.x86_64.rpm
libepubgen-0.1.0-3.el8.x86_64.rpm
gtk2-devel-2.24.32-5.el8.x86_64.rpm
libvisual-0.4.0-25.el8.x86_64.rpm
libsigc++20-2.10.0-6.el8.x86_64.rpm
glibmm24-2.56.0-2.el8.x86_64.rpm
gvfs-devel-1.36.2-11.el8.x86_64.rpm
nautilus-extensions-3.28.1-15.el8.i686.rpm
libsigc++20-devel-2.10.0-6.el8.x86_64.rpm
OpenEXR-devel-2.2.0-12.el8.x86_64.rpm
gtk-doc-1.28-3.el8.x86_64.rpm
glib2-static-2.56.4-9.el8.x86_64.rpm
glib2-static-2.56.4-9.el8.i686.rpm
mutter-devel-3.32.2-57.el8.x86_64.rpm
gtkmm24-devel-2.24.5-6.el8.i686.rpm
vala-0.40.19-2.el8.i686.rpm
gtkmm30-devel-3.22.2-3.el8.x86_64.rpm
OpenEXR-devel-2.2.0-12.el8.i686.rpm
libepubgen-devel-0.1.0-3.el8.i686.rpm
soundtouch-devel-2.0.0-3.el8.x86_64.rpm
atkmm-doc-2.24.2-7.el8.noarch.rpm
libdazzle-devel-3.28.5-2.el8.x86_64.rpm
nautilus-3.28.1-15.el8.i686.rpm
pangomm-devel-2.40.1-6.el8.x86_64.rpm
accountsservice-devel-0.6.55-1.el8.x86_64.rpm
cairomm-devel-1.12.0-8.el8.i686.rpm
libvisual-devel-0.4.0-25.el8.i686.rpm
accountsservice-devel-0.6.55-1.el8.i686.rpm
vala-0.40.19-2.el8.x86_64.rpm
libsass-3.4.5-6.el8.i686.rpm
pangomm-doc-2.40.1-6.el8.noarch.rpm
glib2-doc-2.56.4-9.el8.noarch.rpm
glibmm24-devel-2.56.0-2.el8.i686.rpm
gtkmm30-doc-3.22.2-3.el8.noarch.rpm
mutter-devel-3.32.2-57.el8.i686.rpm
gamin-devel-0.1.10-32.el8.x86_64.rpm
libsass-3.4.5-6.el8.x86_64.rpm
enchant2-devel-2.2.3-3.el8.i686.rpm
libepubgen-devel-0.1.0-3.el8.x86_64.rpm
enchant2-devel-2.2.3-3.el8.x86_64.rpm
nautilus-devel-3.28.1-15.el8.x86_64.rpm
pangomm-devel-2.40.1-6.el8.i686.rpm
glibmm24-devel-2.56.0-2.el8.x86_64.rpm
glibmm24-doc-2.56.0-2.el8.noarch.rpm
gtkmm24-devel-2.24.5-6.el8.x86_64.rpm
soundtouch-devel-2.0.0-3.el8.i686.rpm
woff2-devel-1.0.2-5.el8.i686.rpm
libvisual-devel-0.4.0-25.el8.x86_64.rpm
libdazzle-devel-3.28.5-2.el8.i686.rpm
gvfs-1.36.2-11.el8.i686.rpm
cairomm-doc-1.12.0-8.el8.noarch.rpm
vala-devel-0.40.19-2.el8.x86_64.rpm
gjs-devel-1.56.2-5.el8.x86_64.rpm
libsigc++20-doc-2.10.0-6.el8.noarch.rpm
geoclue2-devel-2.5.5-2.el8.i686.rpm
geoclue2-devel-2.5.5-2.el8.x86_64.rpm
nautilus-devel-3.28.1-15.el8.i686.rpm
atkmm-devel-2.24.2-7.el8.x86_64.rpm
woff2-devel-1.0.2-5.el8.x86_64.rpm
libsass-devel-3.4.5-6.el8.i686.rpm
gamin-devel-0.1.10-32.el8.i686.rpm
gtkmm24-docs-2.24.5-6.el8.noarch.rpm
cairomm-devel-1.12.0-8.el8.x86_64.rpm
atkmm-devel-2.24.2-7.el8.i686.rpm
gjs-devel-1.56.2-5.el8.i686.rpm
libsass-devel-3.4.5-6.el8.x86_64.rpm
gtkmm30-devel-3.22.2-3.el8.i686.rpm
libsigc++20-devel-2.10.0-6.el8.i686.rpm
vala-devel-0.40.19-2.el8.i686.rpm
gamin-0.1.10-32.el8.aarch64.rpm
glibmm24-devel-2.56.0-2.el8.aarch64.rpm
libdazzle-devel-3.28.5-2.el8.aarch64.rpm
geoclue2-devel-2.5.5-2.el8.aarch64.rpm
pangomm-devel-2.40.1-6.el8.aarch64.rpm
cairomm-devel-1.12.0-8.el8.aarch64.rpm
OpenEXR-devel-2.2.0-12.el8.aarch64.rpm
woff2-devel-1.0.2-5.el8.aarch64.rpm
libdazzle-3.28.5-2.el8.aarch64.rpm
atkmm-devel-2.24.2-7.el8.aarch64.rpm
gtk-doc-1.28-3.el8.aarch64.rpm
libsigc++20-devel-2.10.0-6.el8.aarch64.rpm
libvisual-devel-0.4.0-25.el8.aarch64.rpm
vala-0.40.19-2.el8.aarch64.rpm
enchant2-devel-2.2.3-3.el8.aarch64.rpm
libsass-devel-3.4.5-6.el8.aarch64.rpm
soundtouch-devel-2.0.0-3.el8.aarch64.rpm
nautilus-devel-3.28.1-15.el8.aarch64.rpm
vala-devel-0.40.19-2.el8.aarch64.rpm
gtkmm30-devel-3.22.2-3.el8.aarch64.rpm
libepubgen-devel-0.1.0-3.el8.aarch64.rpm
gjs-devel-1.56.2-5.el8.aarch64.rpm
gtkmm24-devel-2.24.5-6.el8.aarch64.rpm
libsass-3.4.5-6.el8.aarch64.rpm
gamin-devel-0.1.10-32.el8.aarch64.rpm
libepubgen-0.1.0-3.el8.aarch64.rpm
gtkmm30-3.22.2-3.el8.aarch64.rpm
gtk2-immodule-xim-2.24.32-5.el8.aarch64.rpm
pangomm-2.40.1-6.el8.aarch64.rpm
cairomm-1.12.0-8.el8.aarch64.rpm
gvfs-afp-1.36.2-11.el8.aarch64.rpm
soundtouch-2.0.0-3.el8.aarch64.rpm
geoclue2-2.5.5-2.el8.aarch64.rpm
woff2-1.0.2-5.el8.aarch64.rpm
gvfs-devel-1.36.2-11.el8.aarch64.rpm
glibmm24-2.56.0-2.el8.aarch64.rpm
gvfs-archive-1.36.2-11.el8.aarch64.rpm
gnome-terminal-nautilus-3.28.3-3.el8.aarch64.rpm
gtk2-devel-2.24.32-5.el8.aarch64.rpm
gvfs-smb-1.36.2-11.el8.aarch64.rpm
enchant2-2.2.3-3.el8.aarch64.rpm
gtk2-devel-docs-2.24.32-5.el8.aarch64.rpm
gvfs-1.36.2-11.el8.aarch64.rpm
libvisual-0.4.0-25.el8.aarch64.rpm
gvfs-afc-1.36.2-11.el8.aarch64.rpm
nautilus-extensions-3.28.1-15.el8.aarch64.rpm
geoclue2-demos-2.5.5-2.el8.aarch64.rpm
OpenEXR-libs-2.2.0-12.el8.aarch64.rpm
gvfs-mtp-1.36.2-11.el8.aarch64.rpm
geoclue2-libs-2.5.5-2.el8.aarch64.rpm
chrome-gnome-shell-10.1-7.el8.aarch64.rpm
gvfs-client-1.36.2-11.el8.aarch64.rpm
gtk2-immodules-2.24.32-5.el8.aarch64.rpm
gtk2-2.24.32-5.el8.aarch64.rpm
geocode-glib-devel-3.26.0-3.el8.aarch64.rpm
gjs-1.56.2-5.el8.aarch64.rpm
gvfs-gphoto2-1.36.2-11.el8.aarch64.rpm
gvfs-goa-1.36.2-11.el8.aarch64.rpm
gnome-terminal-3.28.3-3.el8.aarch64.rpm
geocode-glib-3.26.0-3.el8.aarch64.rpm
nautilus-3.28.1-15.el8.aarch64.rpm
gtkmm24-2.24.5-6.el8.aarch64.rpm
atkmm-2.24.2-7.el8.aarch64.rpm
gvfs-fuse-1.36.2-11.el8.aarch64.rpm
libsigc++20-2.10.0-6.el8.aarch64.rpm
geoclue2-devel-2.5.5-2.el8.ppc64le.rpm
nautilus-devel-3.28.1-15.el8.ppc64le.rpm
gtkmm24-devel-2.24.5-6.el8.ppc64le.rpm
gtkmm30-devel-3.22.2-3.el8.ppc64le.rpm
libsigc++20-devel-2.10.0-6.el8.ppc64le.rpm
vala-devel-0.40.19-2.el8.ppc64le.rpm
atkmm-devel-2.24.2-7.el8.ppc64le.rpm
cairomm-devel-1.12.0-8.el8.ppc64le.rpm
enchant2-devel-2.2.3-3.el8.ppc64le.rpm
gamin-devel-0.1.10-32.el8.ppc64le.rpm
pangomm-devel-2.40.1-6.el8.ppc64le.rpm
glibmm24-devel-2.56.0-2.el8.ppc64le.rpm
libsass-devel-3.4.5-6.el8.ppc64le.rpm
gjs-devel-1.56.2-5.el8.ppc64le.rpm
vala-0.40.19-2.el8.ppc64le.rpm
libsass-3.4.5-6.el8.ppc64le.rpm
woff2-devel-1.0.2-5.el8.ppc64le.rpm
libdazzle-devel-3.28.5-2.el8.ppc64le.rpm
libepubgen-devel-0.1.0-3.el8.ppc64le.rpm
gtk-doc-1.28-3.el8.ppc64le.rpm
libvisual-devel-0.4.0-25.el8.ppc64le.rpm
soundtouch-devel-2.0.0-3.el8.ppc64le.rpm
OpenEXR-devel-2.2.0-12.el8.ppc64le.rpm
geocode-glib-3.26.0-3.el8.ppc64le.rpm
geocode-glib-devel-3.26.0-3.el8.ppc64le.rpm
atkmm-2.24.2-7.el8.ppc64le.rpm
gvfs-smb-1.36.2-11.el8.ppc64le.rpm
gtk2-2.24.32-5.el8.ppc64le.rpm
OpenEXR-libs-2.2.0-12.el8.ppc64le.rpm
glibmm24-2.56.0-2.el8.ppc64le.rpm
libepubgen-0.1.0-3.el8.ppc64le.rpm
gvfs-afc-1.36.2-11.el8.ppc64le.rpm
gvfs-goa-1.36.2-11.el8.ppc64le.rpm
gnome-terminal-nautilus-3.28.3-3.el8.ppc64le.rpm
gtkmm24-2.24.5-6.el8.ppc64le.rpm
geoclue2-demos-2.5.5-2.el8.ppc64le.rpm
gnome-terminal-3.28.3-3.el8.ppc64le.rpm
gvfs-1.36.2-11.el8.ppc64le.rpm
gvfs-client-1.36.2-11.el8.ppc64le.rpm
cairomm-1.12.0-8.el8.ppc64le.rpm
gnome-photos-3.28.1-4.el8.ppc64le.rpm
nautilus-3.28.1-15.el8.ppc64le.rpm
dleyna-server-0.6.0-3.el8.ppc64le.rpm
gvfs-devel-1.36.2-11.el8.ppc64le.rpm
soundtouch-2.0.0-3.el8.ppc64le.rpm
woff2-1.0.2-5.el8.ppc64le.rpm
gtk2-immodules-2.24.32-5.el8.ppc64le.rpm
gvfs-gphoto2-1.36.2-11.el8.ppc64le.rpm
enchant2-2.2.3-3.el8.ppc64le.rpm
gnome-photos-tests-3.28.1-4.el8.ppc64le.rpm
gvfs-mtp-1.36.2-11.el8.ppc64le.rpm
gjs-1.56.2-5.el8.ppc64le.rpm
libvisual-0.4.0-25.el8.ppc64le.rpm
pangomm-2.40.1-6.el8.ppc64le.rpm
geoclue2-libs-2.5.5-2.el8.ppc64le.rpm
gtkmm30-3.22.2-3.el8.ppc64le.rpm
geoclue2-2.5.5-2.el8.ppc64le.rpm
dleyna-core-0.6.0-3.el8.ppc64le.rpm
gtk2-immodule-xim-2.24.32-5.el8.ppc64le.rpm
gvfs-fuse-1.36.2-11.el8.ppc64le.rpm
gvfs-afp-1.36.2-11.el8.ppc64le.rpm
libdazzle-3.28.5-2.el8.ppc64le.rpm
gtk2-devel-2.24.32-5.el8.ppc64le.rpm
nautilus-extensions-3.28.1-15.el8.ppc64le.rpm
gtk2-devel-docs-2.24.32-5.el8.ppc64le.rpm
chrome-gnome-shell-10.1-7.el8.ppc64le.rpm
libsigc++20-2.10.0-6.el8.ppc64le.rpm
gvfs-archive-1.36.2-11.el8.ppc64le.rpm

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.