it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5501-1] gnome-shell security update
- Date: Mon, 18 Sep 2023 21:40:36 +0000
- Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/ZQjD1Ja5TMZ07y/v AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=JnJRE0A1jjaJTF/Lt+rXPDHQYh/kkfG2ODDB2CFF9kM=; b=YV ximsGFa7pQjONtZnGpHJLh7RhosrO6fkPxZ6AVEidQX6RySDf7MNQo3HUNXyNhGPpArvepqp0xqaj 7E5r2HILNTZZcJm5nu++n7JDsdrnU6Dze/jTa2X3qSbKeKHTSHm6DSBNCNMJ4Y8zonLTkC5jCUtnx vz00vBCoOlP1ThcVk+3DmR1DnnOsRYkUEOkjx2H53hpfe0QZ9+CoLCuxZjlahxtWglLK9uAEvzl2n HaRThq3WErX1gAvouWGyc4ZYP8kbZrsPDaHES4WV9eRdyBu/3DXxTnsq1sCG3v+MqPj+zNfu2/9QO He7p5tOfs3RSeAxtvUfShVaKG6tOksaQ==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Mon, 18 Sep 2023 21:41:07 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <K8nPK--sfhK.A.QCG.yPMClB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5501-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
September 18, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : gnome-shell
CVE ID : CVE-2023-43090
Debian Bug : 1052067
Mickael Karatekin discovered that the GNOME session locking didn't
restrict a keyboard shortcut used for taking screenshots in GNOME
Screenshot which could result in information disclosure.
The oldstable distribution (bullseye) is not affected.
For the stable distribution (bookworm), this problem has been fixed in
version 43.6-1~deb12u2.
We recommend that you upgrade your gnome-shell packages.
For the detailed security status of gnome-shell please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gnome-shell
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=BOC4
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5501-1] gnome-shell security update, Moritz Muehlenhoff, 18.09.2023
Archiv bereitgestellt durch MHonArc 2.6.24.