PublicDateAtUSN: 2019-04-22
Candidate: CVE-2019-11460
PublicDate: 2019-04-22 22:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11460
 https://ubuntu.com/security/notices/USN-3994-1
Description:
 An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior
 to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may
 escape the bubblewrap sandbox used to confine thumbnailers by using the
 TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's
 controlling terminal, allowing an attacker to escape the sandbox if the
 thumbnailer has a controlling terminal. This is due to improper filtering
 of the TIOCSTI ioctl on 64-bit systems, similar to CVE-2019-10063.
Ubuntu-Description:
Notes:
Bugs:
 https://gitlab.gnome.org/GNOME/gnome-desktop/issues/112
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928732
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H [9.0 CRITICAL]


Patches_gnome-desktop3:
 upstream: https://gitlab.gnome.org/GNOME/gnome-desktop/commit/02198486eb2d27928db86a685383ab4a0ff9b742 (3.28)
 upstream: https://gitlab.gnome.org/GNOME/gnome-desktop/commit/83949ed5800ec99953f5ee8d2bf8b90a69daa850 (3.30)
 upstream: https://gitlab.gnome.org/GNOME/gnome-desktop/commit/a5475e97c30682c0867bd99b78e7fe600129871a (3.32)
upstream_gnome-desktop3: needs-triage
precise/esm_gnome-desktop3: DNE
trusty_gnome-desktop3: ignored (reached end-of-life)
trusty/esm_gnome-desktop3: DNE (trusty was needs-triage)
xenial_gnome-desktop3: not-affected (code not present)
esm-infra/xenial_gnome-desktop3: not-affected (code not present)
bionic_gnome-desktop3: released (3.28.2-0ubuntu1.3)
cosmic_gnome-desktop3: released (3.30.1-1ubuntu1.1)
disco_gnome-desktop3: released (3.32.1-1ubuntu1.1)
devel_gnome-desktop3: released (3.32.2-1ubuntu1)