CVE-2019-11460

EUVD-2019-3133
An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's controlling terminal, allowing an attacker to escape the sandbox if the thumbnailer has a controlling terminal. This is due to improper filtering of the TIOCSTI ioctl on 64-bit systems, similar to CVE-2019-10063.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9 CRITICAL
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 70%
Affected Products (NVD)
VendorProductVersion
gnomegnome-desktop
3.30.0 ≤
𝑥
< 3.30.2.2
gnomegnome-desktop
3.32.0 ≤
𝑥
< 3.32.1.1
gnomegnome-desktop
3.26.0
gnomegnome-desktop
3.28.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
gnome-desktop3
bullseye
3.38.5-3
fixed
buster
no-dsa
jessie
not-affected
stretch
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gnome-desktop3
bionic
Fixed 3.28.2-0ubuntu1.3
released
cosmic
Fixed 3.30.1-1ubuntu1.1
released
disco
Fixed 3.32.1-1ubuntu1.1
released
trusty
dne
xenial
not-affected
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00088.html
https://gitlab.gnome.org/GNOME/gnome-desktop/issues/112
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V5V6EIUHYR7SNKCRIGYCD3UWNEGFNT2F/
https://security.gentoo.org/glsa/201908-28
https://usn.ubuntu.com/3994-1/
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00088.html
https://gitlab.gnome.org/GNOME/gnome-desktop/issues/112
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V5V6EIUHYR7SNKCRIGYCD3UWNEGFNT2F/
https://security.gentoo.org/glsa/201908-28
https://usn.ubuntu.com/3994-1/