Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2019-12448: CVE-2019-12448 gvfs: race condition in daemon/gvfsbackendadmin.c due to admin backend not implementing query_info_on_read/write (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Red Hat: CVE-2019-12448: CVE-2019-12448 gvfs: race condition in daemon/gvfsbackendadmin.c due to admin backend not implementing query_info_on_read/write (Multiple Advisories)

Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
05/29/2019
Created
05/01/2020
Added
04/29/2020
Modified
12/15/2023

Description

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c has race conditions because the admin backend doesn't implement query_info_on_read/write.

Solution(s)

  • redhat-upgrade-accountsservice
  • redhat-upgrade-accountsservice-debuginfo
  • redhat-upgrade-accountsservice-debugsource
  • redhat-upgrade-accountsservice-devel
  • redhat-upgrade-accountsservice-libs
  • redhat-upgrade-accountsservice-libs-debuginfo
  • redhat-upgrade-appstream-data
  • redhat-upgrade-baobab
  • redhat-upgrade-baobab-debuginfo
  • redhat-upgrade-baobab-debugsource
  • redhat-upgrade-clutter
  • redhat-upgrade-clutter-debuginfo
  • redhat-upgrade-clutter-debugsource
  • redhat-upgrade-clutter-devel
  • redhat-upgrade-clutter-doc
  • redhat-upgrade-clutter-tests-debuginfo
  • redhat-upgrade-evince
  • redhat-upgrade-evince-browser-plugin
  • redhat-upgrade-evince-browser-plugin-debuginfo
  • redhat-upgrade-evince-debuginfo
  • redhat-upgrade-evince-debugsource
  • redhat-upgrade-evince-libs
  • redhat-upgrade-evince-libs-debuginfo
  • redhat-upgrade-evince-nautilus
  • redhat-upgrade-evince-nautilus-debuginfo
  • redhat-upgrade-gdm
  • redhat-upgrade-gdm-debuginfo
  • redhat-upgrade-gdm-debugsource
  • redhat-upgrade-gjs
  • redhat-upgrade-gjs-debuginfo
  • redhat-upgrade-gjs-debugsource
  • redhat-upgrade-gjs-devel
  • redhat-upgrade-gjs-tests-debuginfo
  • redhat-upgrade-gnome-boxes
  • redhat-upgrade-gnome-boxes-debuginfo
  • redhat-upgrade-gnome-boxes-debugsource
  • redhat-upgrade-gnome-control-center
  • redhat-upgrade-gnome-control-center-debuginfo
  • redhat-upgrade-gnome-control-center-debugsource
  • redhat-upgrade-gnome-control-center-filesystem
  • redhat-upgrade-gnome-menus
  • redhat-upgrade-gnome-menus-debuginfo
  • redhat-upgrade-gnome-menus-debugsource
  • redhat-upgrade-gnome-menus-devel
  • redhat-upgrade-gnome-online-accounts
  • redhat-upgrade-gnome-online-accounts-debuginfo
  • redhat-upgrade-gnome-online-accounts-debugsource
  • redhat-upgrade-gnome-online-accounts-devel
  • redhat-upgrade-gnome-remote-desktop
  • redhat-upgrade-gnome-remote-desktop-debuginfo
  • redhat-upgrade-gnome-remote-desktop-debugsource
  • redhat-upgrade-gnome-session
  • redhat-upgrade-gnome-session-debuginfo
  • redhat-upgrade-gnome-session-debugsource
  • redhat-upgrade-gnome-session-wayland-session
  • redhat-upgrade-gnome-session-xsession
  • redhat-upgrade-gnome-settings-daemon
  • redhat-upgrade-gnome-settings-daemon-debuginfo
  • redhat-upgrade-gnome-settings-daemon-debugsource
  • redhat-upgrade-gnome-shell
  • redhat-upgrade-gnome-shell-debuginfo
  • redhat-upgrade-gnome-shell-debugsource
  • redhat-upgrade-gnome-software
  • redhat-upgrade-gnome-software-debuginfo
  • redhat-upgrade-gnome-software-debugsource
  • redhat-upgrade-gnome-software-editor
  • redhat-upgrade-gnome-software-editor-debuginfo
  • redhat-upgrade-gnome-terminal
  • redhat-upgrade-gnome-terminal-debuginfo
  • redhat-upgrade-gnome-terminal-debugsource
  • redhat-upgrade-gnome-terminal-nautilus
  • redhat-upgrade-gnome-terminal-nautilus-debuginfo
  • redhat-upgrade-gnome-tweaks
  • redhat-upgrade-gsettings-desktop-schemas
  • redhat-upgrade-gsettings-desktop-schemas-devel
  • redhat-upgrade-gtk-update-icon-cache
  • redhat-upgrade-gtk-update-icon-cache-debuginfo
  • redhat-upgrade-gtk3
  • redhat-upgrade-gtk3-debuginfo
  • redhat-upgrade-gtk3-debugsource
  • redhat-upgrade-gtk3-devel
  • redhat-upgrade-gtk3-devel-debuginfo
  • redhat-upgrade-gtk3-immodule-xim
  • redhat-upgrade-gtk3-immodule-xim-debuginfo
  • redhat-upgrade-gtk3-immodules-debuginfo
  • redhat-upgrade-gtk3-tests-debuginfo
  • redhat-upgrade-gvfs
  • redhat-upgrade-gvfs-afc
  • redhat-upgrade-gvfs-afc-debuginfo
  • redhat-upgrade-gvfs-afp
  • redhat-upgrade-gvfs-afp-debuginfo
  • redhat-upgrade-gvfs-archive
  • redhat-upgrade-gvfs-archive-debuginfo
  • redhat-upgrade-gvfs-client
  • redhat-upgrade-gvfs-client-debuginfo
  • redhat-upgrade-gvfs-debuginfo
  • redhat-upgrade-gvfs-debugsource
  • redhat-upgrade-gvfs-devel
  • redhat-upgrade-gvfs-fuse
  • redhat-upgrade-gvfs-fuse-debuginfo
  • redhat-upgrade-gvfs-goa
  • redhat-upgrade-gvfs-goa-debuginfo
  • redhat-upgrade-gvfs-gphoto2
  • redhat-upgrade-gvfs-gphoto2-debuginfo
  • redhat-upgrade-gvfs-mtp
  • redhat-upgrade-gvfs-mtp-debuginfo
  • redhat-upgrade-gvfs-smb
  • redhat-upgrade-gvfs-smb-debuginfo
  • redhat-upgrade-libraw
  • redhat-upgrade-libraw-debuginfo
  • redhat-upgrade-libraw-debugsource
  • redhat-upgrade-libraw-devel
  • redhat-upgrade-libraw-samples-debuginfo
  • redhat-upgrade-libvncserver
  • redhat-upgrade-libvncserver-debuginfo
  • redhat-upgrade-libvncserver-debugsource
  • redhat-upgrade-libvncserver-devel
  • redhat-upgrade-libxslt
  • redhat-upgrade-libxslt-debuginfo
  • redhat-upgrade-libxslt-debugsource
  • redhat-upgrade-libxslt-devel
  • redhat-upgrade-mozjs52
  • redhat-upgrade-mozjs52-debuginfo
  • redhat-upgrade-mozjs52-debugsource
  • redhat-upgrade-mozjs52-devel
  • redhat-upgrade-mozjs52-devel-debuginfo
  • redhat-upgrade-mozjs60
  • redhat-upgrade-mozjs60-debuginfo
  • redhat-upgrade-mozjs60-debugsource
  • redhat-upgrade-mozjs60-devel
  • redhat-upgrade-mutter
  • redhat-upgrade-mutter-debuginfo
  • redhat-upgrade-mutter-debugsource
  • redhat-upgrade-mutter-devel
  • redhat-upgrade-mutter-tests-debuginfo
  • redhat-upgrade-nautilus
  • redhat-upgrade-nautilus-debuginfo
  • redhat-upgrade-nautilus-debugsource
  • redhat-upgrade-nautilus-devel
  • redhat-upgrade-nautilus-extensions
  • redhat-upgrade-nautilus-extensions-debuginfo
  • redhat-upgrade-vala
  • redhat-upgrade-vala-debuginfo
  • redhat-upgrade-vala-debugsource
  • redhat-upgrade-vala-devel
  • redhat-upgrade-valadoc-debuginfo
  • redhat-upgrade-vinagre
  • redhat-upgrade-vinagre-debuginfo
  • redhat-upgrade-vinagre-debugsource

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;