{"id":"ALSA-2019:3553","summary":"Low: GNOME security, bug fix, and enhancement update","details":"GNOME is the default desktop environment of AlmaLinux.\n\nSecurity Fix(es):\n\n* evince: uninitialized memory use in function tiff_document_render() and tiff_document_get_thumbnail() (CVE-2019-11459)\n\n* gvfs: improper authorization in daemon/gvfsdaemon.c in gvfsd (CVE-2019-12795)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.","modified":"2026-02-04T03:38:54.551261Z","published":"2019-11-05T17:59:21Z","related":["CVE-2019-11459","CVE-2019-12795"],"references":[{"type":"ADVISORY","url":"https://errata.almalinux.org/8/ALSA-2019-3553.html"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-11070"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-11459"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-12795"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-3820"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-6237"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-6251"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8506"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8518"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8523"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8524"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8535"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8536"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8544"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8551"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8558"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8559"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8563"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8571"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8583"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8584"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8586"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8587"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8594"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8595"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8596"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8597"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8601"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8607"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8608"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8609"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8610"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8611"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8615"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8619"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8622"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8623"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8666"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8671"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8672"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8673"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8676"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8677"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8679"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8681"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8686"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8687"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8689"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8690"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8726"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8735"},{"type":"REPORT","url":"https://vulners.com/cve/CVE-2019-8768"}],"affected":[{"package":{"name":"gdk-pixbuf2","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gdk-pixbuf2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.12-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gdk-pixbuf2-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gdk-pixbuf2-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.12-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gdk-pixbuf2-modules","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gdk-pixbuf2-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.12-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gdk-pixbuf2-xlib","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gdk-pixbuf2-xlib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.12-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gdk-pixbuf2-xlib-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gdk-pixbuf2-xlib-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.12-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gnome-desktop3","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gnome-desktop3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.32.2-1.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"gnome-desktop3-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/gnome-desktop3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.32.2-1.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"libpurple","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/libpurple"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.13.0-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"libpurple-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/libpurple-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.13.0-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"pidgin","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/pidgin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.13.0-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}},{"package":{"name":"pidgin-devel","ecosystem":"AlmaLinux:8","purl":"pkg:rpm/almalinux/pidgin-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.13.0-5.el8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2019:3553.json"}}],"schema_version":"1.7.3"}