USN-3966-1

See a problem?

Source

https://ubuntu.com/security/notices/USN-3966-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3966-1.json

JSON Data

https://api.osv.dev/v1/vulns/USN-3966-1

Related

Published

2019-05-06T13:29:33.190582Z

Modified

2019-05-06T13:29:33.190582Z

Summary

gnome-shell vulnerability

Details

It was discovered that the GNOME Shell incorrectly handled certain keyboard inputs. An attacker could possibly use this issue to invoke keyboard shortcuts, and potentially other actions while the workstation was locked.

References

Affected packages

Ubuntu:18.04:LTS / gnome-shell

Package

Name: gnome-shell
Purl: pkg:deb/ubuntu/gnome-shell@3.28.3+git20190124-0ubuntu18.04.2?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.28.3+git20190124-0ubuntu18.04.2

Affected versions

3.*

3.26.1-0ubuntu4

3.26.1-0ubuntu5

3.26.1-0ubuntu6

3.26.2-0ubuntu1

3.26.2-0ubuntu2

3.26.2-0ubuntu3

3.27.91-0ubuntu1

3.27.92-0ubuntu1

3.28.0-0ubuntu1

3.28.0-0ubuntu2

3.28.0-0ubuntu3

3.28.0-0ubuntu4

3.28.0-0ubuntu5

3.28.1-0ubuntu1

3.28.1-0ubuntu2

3.28.2-0ubuntu0.18.04.1

3.28.3-0ubuntu0.18.04.2

3.28.3-0ubuntu0.18.04.3

3.28.3-0ubuntu0.18.04.4

3.28.3+git20190124-0ubuntu18.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "gnome-shell": "3.28.3+git20190124-0ubuntu18.04.2",
            "gnome-shell-dbgsym": "3.28.3+git20190124-0ubuntu18.04.2",
            "gnome-shell-common": "3.28.3+git20190124-0ubuntu18.04.2"
        }
    ]
}