{"id":"RLSA-2020:4451","summary":"Moderate: GNOME security, bug fix, and enhancement update","details":"GNOME is the default desktop environment of Rocky Linux.\n\nThe following packages have been upgraded to a later upstream version: gnome-remote-desktop (0.1.8), pipewire (0.3.6), vte291 (0.52.4), webkit2gtk3 (2.28.4), xdg-desktop-portal (1.6.0), xdg-desktop-portal-gtk (1.6.0). (BZ#1775345, BZ#1779691, BZ#1817143, BZ#1832347, BZ#1837406)\n\nSecurity Fix(es):\n\n* webkitgtk: Multiple security issues (CVE-2019-8625, CVE-2019-8710, CVE-2019-8720, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8769, CVE-2019-8771, CVE-2019-8782, CVE-2019-8783, CVE-2019-8808, CVE-2019-8811, CVE-2019-8812, CVE-2019-8813, CVE-2019-8814, CVE-2019-8815, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823, CVE-2019-8835, CVE-2019-8844, CVE-2019-8846, CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868, CVE-2020-3885, CVE-2020-3894, CVE-2020-3895, CVE-2020-3897, CVE-2020-3899, CVE-2020-3900, CVE-2020-3901, CVE-2020-3902, CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806, CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925, CVE-2020-10018, CVE-2020-11793)\n\n* gnome-settings-daemon: Rocky Enterprise Software Foundation Customer Portal password logged and passed as command line argument when user registers through GNOME control center (CVE-2020-14391)\n\n* LibRaw: lack of thumbnail size range check can lead to buffer overflow (CVE-2020-15503)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.3 Release Notes linked from the References section.","modified":"2026-02-04T14:15:11.508191Z","published":"2020-11-03T12:05:56Z","upstream":["CVE-2019-8625","CVE-2019-8710","CVE-2019-8720","CVE-2019-8743","CVE-2019-8764","CVE-2019-8766","CVE-2019-8769","CVE-2019-8771","CVE-2019-8782","CVE-2019-8783","CVE-2019-8808","CVE-2019-8811","CVE-2019-8812","CVE-2019-8813","CVE-2019-8814","CVE-2019-8815","CVE-2019-8816","CVE-2019-8819","CVE-2019-8820","CVE-2019-8823","CVE-2019-8835","CVE-2019-8844","CVE-2019-8846","CVE-2020-10018","CVE-2020-11793","CVE-2020-14391","CVE-2020-15503","CVE-2020-3862","CVE-2020-3864","CVE-2020-3865","CVE-2020-3867","CVE-2020-3868","CVE-2020-3885","CVE-2020-3894","CVE-2020-3895","CVE-2020-3897","CVE-2020-3899","CVE-2020-3900","CVE-2020-3901","CVE-2020-3902","CVE-2020-9802","CVE-2020-9803","CVE-2020-9805","CVE-2020-9806","CVE-2020-9807","CVE-2020-9843","CVE-2020-9850","CVE-2020-9862","CVE-2020-9893","CVE-2020-9894","CVE-2020-9895","CVE-2020-9915","CVE-2020-9925","CVE-2020-9952","CVE-2021-30666","CVE-2021-30761","CVE-2021-30762"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2020:4451"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1207179"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1566027"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1569868"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1652178"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1656262"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1668895"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1692536"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1706008"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1706076"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1715845"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719937"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1758891"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1775345"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1778579"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1794045"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1804719"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1805929"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1811721"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1814820"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816070"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816678"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816684"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816686"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1817143"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820759"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820760"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1824362"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827030"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1829369"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1832347"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1833158"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837381"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837406"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837413"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837648"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840080"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840788"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1843486"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844578"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1846191"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847051"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847061"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847062"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847203"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1853477"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1854734"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866332"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1868260"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1872270"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1873093"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1873963"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876462"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876463"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876465"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876468"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876470"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876472"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876473"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876476"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876516"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876518"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876521"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876522"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876523"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876536"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876537"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876540"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876543"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876545"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876548"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876549"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876550"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876552"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876553"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876554"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876555"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876556"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876590"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876591"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876594"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876607"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876611"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876617"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876619"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1877853"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879532"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879535"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879536"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879538"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879540"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879541"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879545"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879557"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879559"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879563"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879564"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879566"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879568"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1880339"}],"affected":[{"package":{"name":"dleyna-renderer","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/dleyna-renderer?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.6.0-3.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"frei0r-plugins","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/frei0r-plugins?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.6.1-7.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"gnome-remote-desktop","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/gnome-remote-desktop?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.1.8-3.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"gnome-session","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/gnome-session?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.28.1-10.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"gsettings-desktop-schemas","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/gsettings-desktop-schemas?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.32.0-5.el8"}],"database_specific":{"yum_repository":"BaseOS"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"gtk3","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/gtk3?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.22.30-6.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"LibRaw","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/LibRaw?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.19.5-2.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"libsoup","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libsoup?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.62.3-2.el8"}],"database_specific":{"yum_repository":"BaseOS"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"PackageKit","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/PackageKit?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.12-6.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"PackageKit","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/PackageKit?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.12-6.el8.0.2"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"pipewire0.2","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/pipewire0.2?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.7-6.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"pipewire","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/pipewire?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.6-1.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"potrace","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/potrace?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.15-3.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"pygobject3","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/pygobject3?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.28.3-2.el8"}],"database_specific":{"yum_repository":"BaseOS"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"tracker","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/tracker?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.5-2.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"vte291","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/vte291?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.52.4-2.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"webrtc-audio-processing","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/webrtc-audio-processing?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3-9.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}},{"package":{"name":"xdg-desktop-portal-gtk","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/xdg-desktop-portal-gtk?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.6.0-1.el8"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2020:4451.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}