Test ID:	1.3.6.1.4.1.25623.1.1.12.2024.7052.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-7052-1)
Summary:	The remote host is missing an update for the 'gnome-shell' package(s) announced via the USN-7052-1 advisory.
Description:	Summary: The remote host is missing an update for the 'gnome-shell' package(s) announced via the USN-7052-1 advisory. Vulnerability Insight: It was discovered that GNOME Shell mishandled extensions that fail to reload, possibly leading to extensions staying enabled on the lock screen. An attacker could possibly use this issue to launch applications, view sensitive information, or execute arbitrary commands. (CVE-2017-8288) It was discovered that the GNOME Shell incorrectly handled certain keyboard inputs. An attacker could possibly use this issue to invoke keyboard shortcuts, and potentially other actions while the workstation was locked. (CVE-2019-3820) Affected Software/OS: 'gnome-shell' package(s) on Ubuntu 16.04. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-8288 BugTraq ID: 98070 http://www.securityfocus.com/bid/98070 Common Vulnerability Exposure (CVE) ID: CVE-2019-3820 https://gitlab.gnome.org/GNOME/gnome-shell/issues/851 SuSE Security Announcement: openSUSE-SU-2019:1529 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00023.html SuSE Security Announcement: openSUSE-SU-2019:1582 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00049.html https://usn.ubuntu.com/3966-1/
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.