Issued:: 2022-05-10
Updated:: 2022-05-10

RHSA-2022:1814 - Security Advisory

Overview
Updated Packages

Synopsis

Low: gnome-shell security and bug fix update

Type/Severity

Security Advisory: Low

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for gnome-shell is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts.

Security Fix(es):

gnome-shell: Password from logged-out user may be shown on login screen (CVE-2020-17489)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
Red Hat Enterprise Linux Server - AUS 8.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat Enterprise Linux Server - TUS 8.8 x86_64
Red Hat Enterprise Linux Server - TUS 8.6 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

BZ - 1868418 - CVE-2020-17489 gnome-shell: Password from logged-out user may be shown on login screen
BZ - 2000918 - Enabled extensions appear on lock screen [rhel-8.6.0]
BZ - 2025940 - [Bug] gnome-shell errors in syslog

CVEs

CVE-2020-17489

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
s390x
gnome-shell-3.32.2-44.el8.s390x.rpm	SHA-256: be0e35ffb11bf547f08a9cb1c7e69c034f247068abfe89996441196b7748c5d7
gnome-shell-debuginfo-3.32.2-44.el8.s390x.rpm	SHA-256: 38129946a066fe28df3afec3102a443d2c813c3f1f72e74aa2b06eed978994c6
gnome-shell-debugsource-3.32.2-44.el8.s390x.rpm	SHA-256: b827a5d8b797df5af0661fd46925d1f4e23df7498b2a492527d33b2868c5165e

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
s390x
gnome-shell-3.32.2-44.el8.s390x.rpm	SHA-256: be0e35ffb11bf547f08a9cb1c7e69c034f247068abfe89996441196b7748c5d7
gnome-shell-debuginfo-3.32.2-44.el8.s390x.rpm	SHA-256: 38129946a066fe28df3afec3102a443d2c813c3f1f72e74aa2b06eed978994c6
gnome-shell-debugsource-3.32.2-44.el8.s390x.rpm	SHA-256: b827a5d8b797df5af0661fd46925d1f4e23df7498b2a492527d33b2868c5165e

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
s390x
gnome-shell-3.32.2-44.el8.s390x.rpm	SHA-256: be0e35ffb11bf547f08a9cb1c7e69c034f247068abfe89996441196b7748c5d7
gnome-shell-debuginfo-3.32.2-44.el8.s390x.rpm	SHA-256: 38129946a066fe28df3afec3102a443d2c813c3f1f72e74aa2b06eed978994c6
gnome-shell-debugsource-3.32.2-44.el8.s390x.rpm	SHA-256: b827a5d8b797df5af0661fd46925d1f4e23df7498b2a492527d33b2868c5165e

Red Hat Enterprise Linux for Power, little endian 8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
ppc64le
gnome-shell-3.32.2-44.el8.ppc64le.rpm	SHA-256: af128df8bf9307df34ac786240484bea5b078d92379ab145aaf71e486148a24f
gnome-shell-debuginfo-3.32.2-44.el8.ppc64le.rpm	SHA-256: b27af09cd054671095dc6806b697e192da42354abf782dbce485dfc6c2aaf618
gnome-shell-debugsource-3.32.2-44.el8.ppc64le.rpm	SHA-256: 51f420637c1b9ef6f18445246e817cde63e819921cf474a9ee5c97ce45740526

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
ppc64le
gnome-shell-3.32.2-44.el8.ppc64le.rpm	SHA-256: af128df8bf9307df34ac786240484bea5b078d92379ab145aaf71e486148a24f
gnome-shell-debuginfo-3.32.2-44.el8.ppc64le.rpm	SHA-256: b27af09cd054671095dc6806b697e192da42354abf782dbce485dfc6c2aaf618
gnome-shell-debugsource-3.32.2-44.el8.ppc64le.rpm	SHA-256: 51f420637c1b9ef6f18445246e817cde63e819921cf474a9ee5c97ce45740526

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
ppc64le
gnome-shell-3.32.2-44.el8.ppc64le.rpm	SHA-256: af128df8bf9307df34ac786240484bea5b078d92379ab145aaf71e486148a24f
gnome-shell-debuginfo-3.32.2-44.el8.ppc64le.rpm	SHA-256: b27af09cd054671095dc6806b697e192da42354abf782dbce485dfc6c2aaf618
gnome-shell-debugsource-3.32.2-44.el8.ppc64le.rpm	SHA-256: 51f420637c1b9ef6f18445246e817cde63e819921cf474a9ee5c97ce45740526

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux for ARM 64 8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
aarch64
gnome-shell-3.32.2-44.el8.aarch64.rpm	SHA-256: 7117e688b4f8834770faf1345d849362af3c5288ed268135c8a614766ff14a8d
gnome-shell-debuginfo-3.32.2-44.el8.aarch64.rpm	SHA-256: aba1fbedb3201323acac0d9d0348cd01a2ce4fdbe358c8dd9130bb694ef8e6c8
gnome-shell-debugsource-3.32.2-44.el8.aarch64.rpm	SHA-256: 2efcf1e9fcff082c4f003d9f539f80873c81eb3eb6d2e3e5a995296631a7757c

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
aarch64
gnome-shell-3.32.2-44.el8.aarch64.rpm	SHA-256: 7117e688b4f8834770faf1345d849362af3c5288ed268135c8a614766ff14a8d
gnome-shell-debuginfo-3.32.2-44.el8.aarch64.rpm	SHA-256: aba1fbedb3201323acac0d9d0348cd01a2ce4fdbe358c8dd9130bb694ef8e6c8
gnome-shell-debugsource-3.32.2-44.el8.aarch64.rpm	SHA-256: 2efcf1e9fcff082c4f003d9f539f80873c81eb3eb6d2e3e5a995296631a7757c

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
aarch64
gnome-shell-3.32.2-44.el8.aarch64.rpm	SHA-256: 7117e688b4f8834770faf1345d849362af3c5288ed268135c8a614766ff14a8d
gnome-shell-debuginfo-3.32.2-44.el8.aarch64.rpm	SHA-256: aba1fbedb3201323acac0d9d0348cd01a2ce4fdbe358c8dd9130bb694ef8e6c8
gnome-shell-debugsource-3.32.2-44.el8.aarch64.rpm	SHA-256: 2efcf1e9fcff082c4f003d9f539f80873c81eb3eb6d2e3e5a995296631a7757c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
ppc64le
gnome-shell-3.32.2-44.el8.ppc64le.rpm	SHA-256: af128df8bf9307df34ac786240484bea5b078d92379ab145aaf71e486148a24f
gnome-shell-debuginfo-3.32.2-44.el8.ppc64le.rpm	SHA-256: b27af09cd054671095dc6806b697e192da42354abf782dbce485dfc6c2aaf618
gnome-shell-debugsource-3.32.2-44.el8.ppc64le.rpm	SHA-256: 51f420637c1b9ef6f18445246e817cde63e819921cf474a9ee5c97ce45740526

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
ppc64le
gnome-shell-3.32.2-44.el8.ppc64le.rpm	SHA-256: af128df8bf9307df34ac786240484bea5b078d92379ab145aaf71e486148a24f
gnome-shell-debuginfo-3.32.2-44.el8.ppc64le.rpm	SHA-256: b27af09cd054671095dc6806b697e192da42354abf782dbce485dfc6c2aaf618
gnome-shell-debugsource-3.32.2-44.el8.ppc64le.rpm	SHA-256: 51f420637c1b9ef6f18445246e817cde63e819921cf474a9ee5c97ce45740526

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
gnome-shell-3.32.2-44.el8.src.rpm	SHA-256: 8965595d53da43617c91f3cf8fa058b5308a13cb19092aa3c6b15b75bb53029d
x86_64
gnome-shell-3.32.2-44.el8.x86_64.rpm	SHA-256: c9a7bbe576a0009d67e8ff647d5af8c0bce2de574bea9191e5b01fd9189b3136
gnome-shell-debuginfo-3.32.2-44.el8.x86_64.rpm	SHA-256: f49e8ee686e6d0fa1732ad50cb11af78f2944c8e906911877282a19d63f8e615
gnome-shell-debugsource-3.32.2-44.el8.x86_64.rpm	SHA-256: 6400adb22cdb4a517570df127d4410b907bdba6c90d7103f980a25740eb92615

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.