Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-9895: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Oracle Linux: CVE-2020-9895: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

07/29/2020

Created

11/14/2020

Added

11/12/2020

Modified

07/22/2024

Description

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected application termination or arbitrary code execution. A flaw was found in webkitgtk in versions prior to 2.28.4 and in WPE WebKit in versions prior to 2.28.4. A use-after-free issue was found allowing a remote attacker to cause unexpected application termination or arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Solution(s)

oracle-linux-upgrade-dleyna-renderer
oracle-linux-upgrade-frei0r-devel
oracle-linux-upgrade-frei0r-plugins
oracle-linux-upgrade-frei0r-plugins-opencv
oracle-linux-upgrade-gdm
oracle-linux-upgrade-gnome-classic-session
oracle-linux-upgrade-gnome-control-center
oracle-linux-upgrade-gnome-control-center-filesystem
oracle-linux-upgrade-gnome-photos
oracle-linux-upgrade-gnome-photos-tests
oracle-linux-upgrade-gnome-remote-desktop
oracle-linux-upgrade-gnome-session
oracle-linux-upgrade-gnome-session-wayland-session
oracle-linux-upgrade-gnome-session-xsession
oracle-linux-upgrade-gnome-settings-daemon
oracle-linux-upgrade-gnome-shell
oracle-linux-upgrade-gnome-shell-extension-apps-menu
oracle-linux-upgrade-gnome-shell-extension-auto-move-windows
oracle-linux-upgrade-gnome-shell-extension-common
oracle-linux-upgrade-gnome-shell-extension-dash-to-dock
oracle-linux-upgrade-gnome-shell-extension-desktop-icons
oracle-linux-upgrade-gnome-shell-extension-disable-screenshield
oracle-linux-upgrade-gnome-shell-extension-drive-menu
oracle-linux-upgrade-gnome-shell-extension-horizontal-workspaces
oracle-linux-upgrade-gnome-shell-extension-launch-new-instance
oracle-linux-upgrade-gnome-shell-extension-native-window-placement
oracle-linux-upgrade-gnome-shell-extension-no-hot-corner
oracle-linux-upgrade-gnome-shell-extension-panel-favorites
oracle-linux-upgrade-gnome-shell-extension-places-menu
oracle-linux-upgrade-gnome-shell-extension-screenshot-window-sizer
oracle-linux-upgrade-gnome-shell-extension-systemmonitor
oracle-linux-upgrade-gnome-shell-extension-top-icons
oracle-linux-upgrade-gnome-shell-extension-updates-dialog
oracle-linux-upgrade-gnome-shell-extension-user-theme
oracle-linux-upgrade-gnome-shell-extension-window-grouper
oracle-linux-upgrade-gnome-shell-extension-window-list
oracle-linux-upgrade-gnome-shell-extension-windowsnavigator
oracle-linux-upgrade-gnome-shell-extension-workspace-indicator
oracle-linux-upgrade-gnome-terminal
oracle-linux-upgrade-gnome-terminal-nautilus
oracle-linux-upgrade-gsettings-desktop-schemas
oracle-linux-upgrade-gsettings-desktop-schemas-devel
oracle-linux-upgrade-gtk3
oracle-linux-upgrade-gtk3-devel
oracle-linux-upgrade-gtk3-immodule-xim
oracle-linux-upgrade-gtk-doc
oracle-linux-upgrade-gtk-update-icon-cache
oracle-linux-upgrade-gvfs
oracle-linux-upgrade-gvfs-afc
oracle-linux-upgrade-gvfs-afp
oracle-linux-upgrade-gvfs-archive
oracle-linux-upgrade-gvfs-client
oracle-linux-upgrade-gvfs-devel
oracle-linux-upgrade-gvfs-fuse
oracle-linux-upgrade-gvfs-goa
oracle-linux-upgrade-gvfs-gphoto2
oracle-linux-upgrade-gvfs-mtp
oracle-linux-upgrade-gvfs-smb
oracle-linux-upgrade-libraw
oracle-linux-upgrade-libraw-devel
oracle-linux-upgrade-libsoup
oracle-linux-upgrade-libsoup-devel
oracle-linux-upgrade-mutter
oracle-linux-upgrade-mutter-devel
oracle-linux-upgrade-nautilus
oracle-linux-upgrade-nautilus-devel
oracle-linux-upgrade-nautilus-extensions
oracle-linux-upgrade-packagekit
oracle-linux-upgrade-packagekit-command-not-found
oracle-linux-upgrade-packagekit-cron
oracle-linux-upgrade-packagekit-glib
oracle-linux-upgrade-packagekit-glib-devel
oracle-linux-upgrade-packagekit-gstreamer-plugin
oracle-linux-upgrade-packagekit-gtk3-module
oracle-linux-upgrade-pipewire
oracle-linux-upgrade-pipewire0-2-devel
oracle-linux-upgrade-pipewire0-2-libs
oracle-linux-upgrade-pipewire-devel
oracle-linux-upgrade-pipewire-doc
oracle-linux-upgrade-pipewire-libs
oracle-linux-upgrade-pipewire-utils
oracle-linux-upgrade-potrace
oracle-linux-upgrade-pygobject3-devel
oracle-linux-upgrade-python3-gobject
oracle-linux-upgrade-python3-gobject-base
oracle-linux-upgrade-tracker
oracle-linux-upgrade-tracker-devel
oracle-linux-upgrade-vte291
oracle-linux-upgrade-vte291-devel
oracle-linux-upgrade-vte-profile
oracle-linux-upgrade-webkit2gtk3
oracle-linux-upgrade-webkit2gtk3-devel
oracle-linux-upgrade-webkit2gtk3-jsc
oracle-linux-upgrade-webkit2gtk3-jsc-devel
oracle-linux-upgrade-webrtc-audio-processing
oracle-linux-upgrade-xdg-desktop-portal
oracle-linux-upgrade-xdg-desktop-portal-gtk

References

https://attackerkb.com/topics/cve-2020-9895
CVE - 2020-9895
ELSA-2020-4451

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-9895: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Oracle Linux: CVE-2020-9895: ELSA-2020-4451: GNOME security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.