Detections
Analytics
RHEL 7 : GNOME (RHSA-2018:3140)
critical Nessus Plugin ID 118726
Language:
Synopsis
The remote Red Hat host is missing one or more security updates.Description
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3140 advisory.GNOME is the default desktop environment of Red Hat Enterprise Linux.
Security Fix(es):
* libsoup: Crash in soup_cookie_jar.c:get_cookies() on empty hostnames (CVE-2018-12910)
* poppler: Infinite recursion in fofi/FoFiType1C.cc:FoFiType1C::cvtGlyph() function allows denial of service (CVE-2017-18267)
* libgxps: heap based buffer over read in ft_font_face_hash function of gxps-fonts.c (CVE-2018-10733)
* libgxps: Stack-based buffer overflow in calling glib in gxps_images_guess_content_type of gcontenttype.c (CVE-2018-10767)
* poppler: NULL pointer dereference in Annot.h:AnnotPath::getCoordsLength() allows for denial of service via crafted PDF (CVE-2018-10768)
* poppler: out of bounds read in pdfunite (CVE-2018-13988)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank chenyuan (NESA Lab) for reporting CVE-2018-10733 and CVE-2018-10767 and Hosein Askari for reporting CVE-2018-13988.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bugzilla.redhat.com/show_bug.cgi?id=1521077
https://bugzilla.redhat.com/show_bug.cgi?id=1524375
https://bugzilla.redhat.com/show_bug.cgi?id=1541180
https://bugzilla.redhat.com/show_bug.cgi?id=1542702
https://bugzilla.redhat.com/show_bug.cgi?id=1559001
https://bugzilla.redhat.com/show_bug.cgi?id=1567040
https://bugzilla.redhat.com/show_bug.cgi?id=1567131
https://bugzilla.redhat.com/show_bug.cgi?id=1567135
https://bugzilla.redhat.com/show_bug.cgi?id=1567145
https://bugzilla.redhat.com/show_bug.cgi?id=1567158
https://bugzilla.redhat.com/show_bug.cgi?id=1567161
https://bugzilla.redhat.com/show_bug.cgi?id=1567170
https://bugzilla.redhat.com/show_bug.cgi?id=1567179
https://bugzilla.redhat.com/show_bug.cgi?id=1567184
https://bugzilla.redhat.com/show_bug.cgi?id=1567185
https://bugzilla.redhat.com/show_bug.cgi?id=1567186
https://bugzilla.redhat.com/show_bug.cgi?id=1567187
https://bugzilla.redhat.com/show_bug.cgi?id=1567199
https://bugzilla.redhat.com/show_bug.cgi?id=1567200
https://bugzilla.redhat.com/show_bug.cgi?id=1567311
https://bugzilla.redhat.com/show_bug.cgi?id=1567313
https://bugzilla.redhat.com/show_bug.cgi?id=1567325
https://bugzilla.redhat.com/show_bug.cgi?id=1567381
https://bugzilla.redhat.com/show_bug.cgi?id=1567399
https://bugzilla.redhat.com/show_bug.cgi?id=1567475
https://bugzilla.redhat.com/show_bug.cgi?id=1567476
https://bugzilla.redhat.com/show_bug.cgi?id=1567477
https://bugzilla.redhat.com/show_bug.cgi?id=1567478
http://www.nessus.org/u?2b0cc1e7
http://www.nessus.org/u?bd78a88c
https://access.redhat.com/errata/RHSA-2018:3140
https://access.redhat.com/security/updates/classification/#moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1309776
https://bugzilla.redhat.com/show_bug.cgi?id=1347188
https://bugzilla.redhat.com/show_bug.cgi?id=1396775
https://bugzilla.redhat.com/show_bug.cgi?id=1415697
https://bugzilla.redhat.com/show_bug.cgi?id=1423374
https://bugzilla.redhat.com/show_bug.cgi?id=1451211
https://bugzilla.redhat.com/show_bug.cgi?id=1473167
https://bugzilla.redhat.com/show_bug.cgi?id=1484094
https://bugzilla.redhat.com/show_bug.cgi?id=1486064
https://bugzilla.redhat.com/show_bug.cgi?id=1491720
https://bugzilla.redhat.com/show_bug.cgi?id=1497303
https://bugzilla.redhat.com/show_bug.cgi?id=1501989
https://bugzilla.redhat.com/show_bug.cgi?id=1502788
https://bugzilla.redhat.com/show_bug.cgi?id=1503624
https://bugzilla.redhat.com/show_bug.cgi?id=1504129
https://bugzilla.redhat.com/show_bug.cgi?id=1507892
https://bugzilla.redhat.com/show_bug.cgi?id=1511454
https://bugzilla.redhat.com/show_bug.cgi?id=1514182
https://bugzilla.redhat.com/show_bug.cgi?id=1520936
https://bugzilla.redhat.com/show_bug.cgi?id=1567374
https://bugzilla.redhat.com/show_bug.cgi?id=1567375
https://bugzilla.redhat.com/show_bug.cgi?id=1567380
https://bugzilla.redhat.com/show_bug.cgi?id=1567479
https://bugzilla.redhat.com/show_bug.cgi?id=1568169
https://bugzilla.redhat.com/show_bug.cgi?id=1568170
https://bugzilla.redhat.com/show_bug.cgi?id=1568171
https://bugzilla.redhat.com/show_bug.cgi?id=1568172
https://bugzilla.redhat.com/show_bug.cgi?id=1568174
https://bugzilla.redhat.com/show_bug.cgi?id=1568175
https://bugzilla.redhat.com/show_bug.cgi?id=1569294
https://bugzilla.redhat.com/show_bug.cgi?id=1569295
https://bugzilla.redhat.com/show_bug.cgi?id=1569717
https://bugzilla.redhat.com/show_bug.cgi?id=1569718
https://bugzilla.redhat.com/show_bug.cgi?id=1569719
https://bugzilla.redhat.com/show_bug.cgi?id=1569721
https://bugzilla.redhat.com/show_bug.cgi?id=1569723
https://bugzilla.redhat.com/show_bug.cgi?id=1569727
https://bugzilla.redhat.com/show_bug.cgi?id=1569728
https://bugzilla.redhat.com/show_bug.cgi?id=1569730
https://bugzilla.redhat.com/show_bug.cgi?id=1569802
https://bugzilla.redhat.com/show_bug.cgi?id=1569805
https://bugzilla.redhat.com/show_bug.cgi?id=1569806
https://bugzilla.redhat.com/show_bug.cgi?id=1569809
https://bugzilla.redhat.com/show_bug.cgi?id=1569810
https://bugzilla.redhat.com/show_bug.cgi?id=1569811
https://bugzilla.redhat.com/show_bug.cgi?id=1569812
https://bugzilla.redhat.com/show_bug.cgi?id=1569971
https://bugzilla.redhat.com/show_bug.cgi?id=1569975
https://bugzilla.redhat.com/show_bug.cgi?id=1569980
https://bugzilla.redhat.com/show_bug.cgi?id=1569988
https://bugzilla.redhat.com/show_bug.cgi?id=1569989
https://bugzilla.redhat.com/show_bug.cgi?id=1569991
https://bugzilla.redhat.com/show_bug.cgi?id=1570004
https://bugzilla.redhat.com/show_bug.cgi?id=1570028
https://bugzilla.redhat.com/show_bug.cgi?id=1570030
https://bugzilla.redhat.com/show_bug.cgi?id=1570031
https://bugzilla.redhat.com/show_bug.cgi?id=1570032
https://bugzilla.redhat.com/show_bug.cgi?id=1570569
https://bugzilla.redhat.com/show_bug.cgi?id=1571422
https://bugzilla.redhat.com/show_bug.cgi?id=1576111
https://bugzilla.redhat.com/show_bug.cgi?id=1576169
https://bugzilla.redhat.com/show_bug.cgi?id=1576175
https://bugzilla.redhat.com/show_bug.cgi?id=1576494
https://bugzilla.redhat.com/show_bug.cgi?id=1576501
https://bugzilla.redhat.com/show_bug.cgi?id=1576504
https://bugzilla.redhat.com/show_bug.cgi?id=1590848
https://bugzilla.redhat.com/show_bug.cgi?id=1591614
https://bugzilla.redhat.com/show_bug.cgi?id=1591638
https://bugzilla.redhat.com/show_bug.cgi?id=1591792
https://bugzilla.redhat.com/show_bug.cgi?id=1592809
https://bugzilla.redhat.com/show_bug.cgi?id=1593215
https://bugzilla.redhat.com/show_bug.cgi?id=1593244
https://bugzilla.redhat.com/show_bug.cgi?id=1593356
https://bugzilla.redhat.com/show_bug.cgi?id=1593782
https://bugzilla.redhat.com/show_bug.cgi?id=1594725
https://bugzilla.redhat.com/show_bug.cgi?id=1594814
https://bugzilla.redhat.com/show_bug.cgi?id=1594880
https://bugzilla.redhat.com/show_bug.cgi?id=1596735
https://bugzilla.redhat.com/show_bug.cgi?id=1597339
https://bugzilla.redhat.com/show_bug.cgi?id=1597350
https://bugzilla.redhat.com/show_bug.cgi?id=1597353
https://bugzilla.redhat.com/show_bug.cgi?id=1597764
https://bugzilla.redhat.com/show_bug.cgi?id=1597860
https://bugzilla.redhat.com/show_bug.cgi?id=1597980
https://bugzilla.redhat.com/show_bug.cgi?id=1599841
https://bugzilla.redhat.com/show_bug.cgi?id=1600079
https://bugzilla.redhat.com/show_bug.cgi?id=1600560
https://bugzilla.redhat.com/show_bug.cgi?id=1601598
https://bugzilla.redhat.com/show_bug.cgi?id=1568624
https://bugzilla.redhat.com/show_bug.cgi?id=1568625
https://bugzilla.redhat.com/show_bug.cgi?id=1568626
https://bugzilla.redhat.com/show_bug.cgi?id=1568632
https://bugzilla.redhat.com/show_bug.cgi?id=1568633
https://bugzilla.redhat.com/show_bug.cgi?id=1568638
https://bugzilla.redhat.com/show_bug.cgi?id=1568968
https://bugzilla.redhat.com/show_bug.cgi?id=1569268
https://bugzilla.redhat.com/show_bug.cgi?id=1569272
https://bugzilla.redhat.com/show_bug.cgi?id=1569273
https://bugzilla.redhat.com/show_bug.cgi?id=1569277
https://bugzilla.redhat.com/show_bug.cgi?id=1569278
https://bugzilla.redhat.com/show_bug.cgi?id=1569279
https://bugzilla.redhat.com/show_bug.cgi?id=1569281
https://bugzilla.redhat.com/show_bug.cgi?id=1569284
https://bugzilla.redhat.com/show_bug.cgi?id=1569285
https://bugzilla.redhat.com/show_bug.cgi?id=1569288
https://bugzilla.redhat.com/show_bug.cgi?id=1569289
https://bugzilla.redhat.com/show_bug.cgi?id=1569731
https://bugzilla.redhat.com/show_bug.cgi?id=1569732
https://bugzilla.redhat.com/show_bug.cgi?id=1569733
https://bugzilla.redhat.com/show_bug.cgi?id=1569734
https://bugzilla.redhat.com/show_bug.cgi?id=1569735
https://bugzilla.redhat.com/show_bug.cgi?id=1569736
https://bugzilla.redhat.com/show_bug.cgi?id=1569738
https://bugzilla.redhat.com/show_bug.cgi?id=1569748
https://bugzilla.redhat.com/show_bug.cgi?id=1569757
https://bugzilla.redhat.com/show_bug.cgi?id=1569784
https://bugzilla.redhat.com/show_bug.cgi?id=1569785
https://bugzilla.redhat.com/show_bug.cgi?id=1569786
https://bugzilla.redhat.com/show_bug.cgi?id=1569787
https://bugzilla.redhat.com/show_bug.cgi?id=1569789
https://bugzilla.redhat.com/show_bug.cgi?id=1569794
https://bugzilla.redhat.com/show_bug.cgi?id=1569801
https://bugzilla.redhat.com/show_bug.cgi?id=1569814
https://bugzilla.redhat.com/show_bug.cgi?id=1569815
https://bugzilla.redhat.com/show_bug.cgi?id=1569961
https://bugzilla.redhat.com/show_bug.cgi?id=1569962
https://bugzilla.redhat.com/show_bug.cgi?id=1569963
https://bugzilla.redhat.com/show_bug.cgi?id=1569965
https://bugzilla.redhat.com/show_bug.cgi?id=1570008
https://bugzilla.redhat.com/show_bug.cgi?id=1570009
https://bugzilla.redhat.com/show_bug.cgi?id=1570013
https://bugzilla.redhat.com/show_bug.cgi?id=1570015
https://bugzilla.redhat.com/show_bug.cgi?id=1570023
https://bugzilla.redhat.com/show_bug.cgi?id=1570024
https://bugzilla.redhat.com/show_bug.cgi?id=1570025
https://bugzilla.redhat.com/show_bug.cgi?id=1573622
https://bugzilla.redhat.com/show_bug.cgi?id=1574844
https://bugzilla.redhat.com/show_bug.cgi?id=1575188
https://bugzilla.redhat.com/show_bug.cgi?id=1575495
https://bugzilla.redhat.com/show_bug.cgi?id=1575499
https://bugzilla.redhat.com/show_bug.cgi?id=1575500
https://bugzilla.redhat.com/show_bug.cgi?id=1576535
https://bugzilla.redhat.com/show_bug.cgi?id=1576536
https://bugzilla.redhat.com/show_bug.cgi?id=1576537
https://bugzilla.redhat.com/show_bug.cgi?id=1576538
https://bugzilla.redhat.com/show_bug.cgi?id=1576541
https://bugzilla.redhat.com/show_bug.cgi?id=1576544
https://bugzilla.redhat.com/show_bug.cgi?id=1578777
https://bugzilla.redhat.com/show_bug.cgi?id=1580577
https://bugzilla.redhat.com/show_bug.cgi?id=1581308
https://bugzilla.redhat.com/show_bug.cgi?id=1581454
https://bugzilla.redhat.com/show_bug.cgi?id=1584245
https://bugzilla.redhat.com/show_bug.cgi?id=1584263
https://bugzilla.redhat.com/show_bug.cgi?id=1584266
https://bugzilla.redhat.com/show_bug.cgi?id=1584655
https://bugzilla.redhat.com/show_bug.cgi?id=1585230
https://bugzilla.redhat.com/show_bug.cgi?id=1590537
https://bugzilla.redhat.com/show_bug.cgi?id=1602838
https://bugzilla.redhat.com/show_bug.cgi?id=1608936
https://bugzilla.redhat.com/show_bug.cgi?id=1610324
https://bugzilla.redhat.com/show_bug.cgi?id=1611565
https://bugzilla.redhat.com/show_bug.cgi?id=1612983
https://bugzilla.redhat.com/show_bug.cgi?id=1613813
https://bugzilla.redhat.com/show_bug.cgi?id=1616185
https://bugzilla.redhat.com/show_bug.cgi?id=1624842
https://bugzilla.redhat.com/show_bug.cgi?id=1625700
https://bugzilla.redhat.com/show_bug.cgi?id=1625906
https://bugzilla.redhat.com/show_bug.cgi?id=1626104
https://bugzilla.redhat.com/show_bug.cgi?id=1628587
https://bugzilla.redhat.com/show_bug.cgi?id=1633828
https://bugzilla.redhat.com/show_bug.cgi?id=1568176
https://bugzilla.redhat.com/show_bug.cgi?id=1568177
https://bugzilla.redhat.com/show_bug.cgi?id=1568229
https://bugzilla.redhat.com/show_bug.cgi?id=1568232
https://bugzilla.redhat.com/show_bug.cgi?id=1568233
https://bugzilla.redhat.com/show_bug.cgi?id=1568618
Plugin Details
Severity: Critical
ID: 118726
File Name: redhat-RHSA-2018-3140.nasl
Version: 1.10
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 11/5/2018
Updated: 11/5/2024
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
Vendor
Vendor Severity: Moderate
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2018-12910
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:yelp-devel, p-cpe:/a:redhat:enterprise_linux:cairo-gobject, p-cpe:/a:redhat:enterprise_linux:gtk-doc, p-cpe:/a:redhat:enterprise_linux:gnome-packagekit, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-workspace-indicator, p-cpe:/a:redhat:enterprise_linux:cairo, p-cpe:/a:redhat:enterprise_linux:brasero-nautilus, p-cpe:/a:redhat:enterprise_linux:gssdp-devel, p-cpe:/a:redhat:enterprise_linux:python2-pyatspi, p-cpe:/a:redhat:enterprise_linux:gnome-packagekit-installer, p-cpe:/a:redhat:enterprise_linux:fwupdate-libs, p-cpe:/a:redhat:enterprise_linux:gnome-classic-session, p-cpe:/a:redhat:enterprise_linux:librsvg2, p-cpe:/a:redhat:enterprise_linux:gnome-packagekit-common, p-cpe:/a:redhat:enterprise_linux:atk, p-cpe:/a:redhat:enterprise_linux:libwayland-cursor, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-screenshot-window-sizer, p-cpe:/a:redhat:enterprise_linux:gnote, p-cpe:/a:redhat:enterprise_linux:gtk3, p-cpe:/a:redhat:enterprise_linux:fribidi, p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf2-tests, p-cpe:/a:redhat:enterprise_linux:gom-devel, p-cpe:/a:redhat:enterprise_linux:gssdp, p-cpe:/a:redhat:enterprise_linux:compat-libical1, p-cpe:/a:redhat:enterprise_linux:libwayland-egl, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-pl, p-cpe:/a:redhat:enterprise_linux:gnome-settings-daemon-devel, p-cpe:/a:redhat:enterprise_linux:libappstream-glib-builder, p-cpe:/a:redhat:enterprise_linux:openchange-devel-docs, p-cpe:/a:redhat:enterprise_linux:mozjs52, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-codecomment, p-cpe:/a:redhat:enterprise_linux:vte291-devel, p-cpe:/a:redhat:enterprise_linux:brasero-devel, p-cpe:/a:redhat:enterprise_linux:libchamplain-gtk, p-cpe:/a:redhat:enterprise_linux:gssdp-utils, p-cpe:/a:redhat:enterprise_linux:mozjs52-devel, p-cpe:/a:redhat:enterprise_linux:evolution-pst, p-cpe:/a:redhat:enterprise_linux:vte291, p-cpe:/a:redhat:enterprise_linux:gssdp-docs, p-cpe:/a:redhat:enterprise_linux:gsettings-desktop-schemas, p-cpe:/a:redhat:enterprise_linux:sushi, p-cpe:/a:redhat:enterprise_linux:libgnomekbd, p-cpe:/a:redhat:enterprise_linux:libwnck3-devel, p-cpe:/a:redhat:enterprise_linux:poppler-devel, p-cpe:/a:redhat:enterprise_linux:libchamplain-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-textsize, p-cpe:/a:redhat:enterprise_linux:ekiga, p-cpe:/a:redhat:enterprise_linux:openchange-devel, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-places-menu, p-cpe:/a:redhat:enterprise_linux:libgxps, p-cpe:/a:redhat:enterprise_linux:webkitgtk4, p-cpe:/a:redhat:enterprise_linux:xdg-desktop-portal-devel, p-cpe:/a:redhat:enterprise_linux:gnome-software-devel, p-cpe:/a:redhat:enterprise_linux:baobab, p-cpe:/a:redhat:enterprise_linux:libical, p-cpe:/a:redhat:enterprise_linux:geoclue2-libs, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-windowsnavigator, p-cpe:/a:redhat:enterprise_linux:poppler-demos, p-cpe:/a:redhat:enterprise_linux:librsvg2-devel, p-cpe:/a:redhat:enterprise_linux:nautilus-sendto, p-cpe:/a:redhat:enterprise_linux:grilo, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-findinfiles, p-cpe:/a:redhat:enterprise_linux:libgweather-devel, p-cpe:/a:redhat:enterprise_linux:fontconfig-devel, p-cpe:/a:redhat:enterprise_linux:bolt, p-cpe:/a:redhat:enterprise_linux:evolution-data-server-perl, p-cpe:/a:redhat:enterprise_linux:gtk-update-icon-cache, p-cpe:/a:redhat:enterprise_linux:rest, p-cpe:/a:redhat:enterprise_linux:gstreamer1-plugins-base-devel-docs, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-common, p-cpe:/a:redhat:enterprise_linux:libgdata-devel, p-cpe:/a:redhat:enterprise_linux:dconf, p-cpe:/a:redhat:enterprise_linux:gnome-terminal, p-cpe:/a:redhat:enterprise_linux:libosinfo-vala, p-cpe:/a:redhat:enterprise_linux:gnome-settings-daemon, p-cpe:/a:redhat:enterprise_linux:folks-tools, p-cpe:/a:redhat:enterprise_linux:glib2-fam, p-cpe:/a:redhat:enterprise_linux:gvfs-client, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-multiedit, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-translate, p-cpe:/a:redhat:enterprise_linux:libical-glib-doc, p-cpe:/a:redhat:enterprise_linux:poppler-qt, p-cpe:/a:redhat:enterprise_linux:devhelp-libs, p-cpe:/a:redhat:enterprise_linux:libgepub, p-cpe:/a:redhat:enterprise_linux:evince-devel, p-cpe:/a:redhat:enterprise_linux:totem-pl-parser, p-cpe:/a:redhat:enterprise_linux:json-glib-devel, p-cpe:/a:redhat:enterprise_linux:gnome-documents-libs, p-cpe:/a:redhat:enterprise_linux:gnome-session-wayland-session, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-window-list, p-cpe:/a:redhat:enterprise_linux:evolution-devel-docs, p-cpe:/a:redhat:enterprise_linux:dconf-devel, p-cpe:/a:redhat:enterprise_linux:gvfs-fuse, p-cpe:/a:redhat:enterprise_linux:packagekit-command-not-found, p-cpe:/a:redhat:enterprise_linux:brasero-libs, cpe:/o:redhat:enterprise_linux:7, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-systemmonitor, p-cpe:/a:redhat:enterprise_linux:file-roller, p-cpe:/a:redhat:enterprise_linux:packagekit-glib, p-cpe:/a:redhat:enterprise_linux:gnome-backgrounds, p-cpe:/a:redhat:enterprise_linux:gspell-doc, p-cpe:/a:redhat:enterprise_linux:gvfs-gphoto2, p-cpe:/a:redhat:enterprise_linux:appstream-data, p-cpe:/a:redhat:enterprise_linux:evolution-ews-langpacks, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-cs, p-cpe:/a:redhat:enterprise_linux:gtk3-tests, p-cpe:/a:redhat:enterprise_linux:mutter, p-cpe:/a:redhat:enterprise_linux:libsoup, p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf2, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-bracketcompletion, p-cpe:/a:redhat:enterprise_linux:glib2, p-cpe:/a:redhat:enterprise_linux:folks, p-cpe:/a:redhat:enterprise_linux:fwupd, p-cpe:/a:redhat:enterprise_linux:gnome-session-xsession, p-cpe:/a:redhat:enterprise_linux:totem, p-cpe:/a:redhat:enterprise_linux:vte-profile, p-cpe:/a:redhat:enterprise_linux:libjpeg-turbo, p-cpe:/a:redhat:enterprise_linux:evolution-tests, p-cpe:/a:redhat:enterprise_linux:geocode-glib-devel, p-cpe:/a:redhat:enterprise_linux:gtk3-devel-docs, p-cpe:/a:redhat:enterprise_linux:gvfs-archive, p-cpe:/a:redhat:enterprise_linux:grilo-plugins, p-cpe:/a:redhat:enterprise_linux:json-glib, p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf2-devel, p-cpe:/a:redhat:enterprise_linux:adwaita-gtk2-theme, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-top-icons, p-cpe:/a:redhat:enterprise_linux:glib-networking, p-cpe:/a:redhat:enterprise_linux:poppler-glib-devel, p-cpe:/a:redhat:enterprise_linux:seahorse-nautilus, p-cpe:/a:redhat:enterprise_linux:valadoc, p-cpe:/a:redhat:enterprise_linux:eog, p-cpe:/a:redhat:enterprise_linux:evolution-langpacks, p-cpe:/a:redhat:enterprise_linux:upower-devel-docs, p-cpe:/a:redhat:enterprise_linux:gnome-documents, p-cpe:/a:redhat:enterprise_linux:gnome-terminal-nautilus, p-cpe:/a:redhat:enterprise_linux:libappstream-glib, p-cpe:/a:redhat:enterprise_linux:libosinfo-devel, p-cpe:/a:redhat:enterprise_linux:libwnck3, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-charmap, p-cpe:/a:redhat:enterprise_linux:gtk3-immodules, p-cpe:/a:redhat:enterprise_linux:gnome-desktop3-devel, p-cpe:/a:redhat:enterprise_linux:gnome-color-manager, p-cpe:/a:redhat:enterprise_linux:glibmm24, p-cpe:/a:redhat:enterprise_linux:gnome-user-docs, p-cpe:/a:redhat:enterprise_linux:libmediaart, p-cpe:/a:redhat:enterprise_linux:gnome-keyring, p-cpe:/a:redhat:enterprise_linux:gnome-session, p-cpe:/a:redhat:enterprise_linux:libsoup-devel, p-cpe:/a:redhat:enterprise_linux:glib2-tests, p-cpe:/a:redhat:enterprise_linux:packagekit-cron, p-cpe:/a:redhat:enterprise_linux:libgexiv2, p-cpe:/a:redhat:enterprise_linux:wayland-doc, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-user-theme, p-cpe:/a:redhat:enterprise_linux:libchamplain, p-cpe:/a:redhat:enterprise_linux:libappstream-glib-devel, p-cpe:/a:redhat:enterprise_linux:shotwell, p-cpe:/a:redhat:enterprise_linux:totem-nautilus, p-cpe:/a:redhat:enterprise_linux:google-noto-emoji-color-fonts, p-cpe:/a:redhat:enterprise_linux:gupnp, p-cpe:/a:redhat:enterprise_linux:poppler-qt-devel, p-cpe:/a:redhat:enterprise_linux:folks-devel, p-cpe:/a:redhat:enterprise_linux:eog-devel, p-cpe:/a:redhat:enterprise_linux:yelp-xsl, p-cpe:/a:redhat:enterprise_linux:packagekit-glib-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-drawspaces, p-cpe:/a:redhat:enterprise_linux:libgweather, p-cpe:/a:redhat:enterprise_linux:gedit-devel, p-cpe:/a:redhat:enterprise_linux:wayland-protocols-devel, p-cpe:/a:redhat:enterprise_linux:gnome-tweak-tool, p-cpe:/a:redhat:enterprise_linux:evince, p-cpe:/a:redhat:enterprise_linux:fwupdate-devel, p-cpe:/a:redhat:enterprise_linux:pango, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-commander, p-cpe:/a:redhat:enterprise_linux:fwupd-devel, p-cpe:/a:redhat:enterprise_linux:gnome-bluetooth, p-cpe:/a:redhat:enterprise_linux:libmediaart-devel, p-cpe:/a:redhat:enterprise_linux:gjs, p-cpe:/a:redhat:enterprise_linux:gedit-plugins-data, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-joinlines, p-cpe:/a:redhat:enterprise_linux:libchamplain-demos, p-cpe:/a:redhat:enterprise_linux:evolution-devel, p-cpe:/a:redhat:enterprise_linux:evolution-ews, p-cpe:/a:redhat:enterprise_linux:gvfs-afp, p-cpe:/a:redhat:enterprise_linux:at-spi2-core-devel, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-de, p-cpe:/a:redhat:enterprise_linux:totem-devel, p-cpe:/a:redhat:enterprise_linux:gnome-keyring-pam, p-cpe:/a:redhat:enterprise_linux:webkitgtk4-devel, p-cpe:/a:redhat:enterprise_linux:evolution-mapi, p-cpe:/a:redhat:enterprise_linux:libcroco-devel, p-cpe:/a:redhat:enterprise_linux:libpeas-gtk, p-cpe:/a:redhat:enterprise_linux:libical-devel, p-cpe:/a:redhat:enterprise_linux:libjpeg-turbo-static, p-cpe:/a:redhat:enterprise_linux:libsecret-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-synctex, p-cpe:/a:redhat:enterprise_linux:harfbuzz-icu, p-cpe:/a:redhat:enterprise_linux:gucharmap-devel, p-cpe:/a:redhat:enterprise_linux:gnome-online-accounts-devel, p-cpe:/a:redhat:enterprise_linux:gtksourceview3-devel, p-cpe:/a:redhat:enterprise_linux:geoclue2-demos, p-cpe:/a:redhat:enterprise_linux:gtk3-devel, p-cpe:/a:redhat:enterprise_linux:file-roller-nautilus, p-cpe:/a:redhat:enterprise_linux:libgxps-tools, p-cpe:/a:redhat:enterprise_linux:libcroco, p-cpe:/a:redhat:enterprise_linux:gnome-bluetooth-libs-devel, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-no-hot-corner, p-cpe:/a:redhat:enterprise_linux:harfbuzz-devel, p-cpe:/a:redhat:enterprise_linux:packagekit-yum, p-cpe:/a:redhat:enterprise_linux:glib2-devel, p-cpe:/a:redhat:enterprise_linux:gnome-screenshot, p-cpe:/a:redhat:enterprise_linux:adwaita-icon-theme-devel, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs, p-cpe:/a:redhat:enterprise_linux:libgee-devel, p-cpe:/a:redhat:enterprise_linux:libgee, p-cpe:/a:redhat:enterprise_linux:evolution-data-server-doc, p-cpe:/a:redhat:enterprise_linux:libmediaart-tests, p-cpe:/a:redhat:enterprise_linux:fribidi-devel, p-cpe:/a:redhat:enterprise_linux:yelp, p-cpe:/a:redhat:enterprise_linux:libpeas, p-cpe:/a:redhat:enterprise_linux:empathy, p-cpe:/a:redhat:enterprise_linux:cairo-gobject-devel, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extensions, p-cpe:/a:redhat:enterprise_linux:evolution-data-server, p-cpe:/a:redhat:enterprise_linux:libgtop2-devel, p-cpe:/a:redhat:enterprise_linux:redhat-logos, p-cpe:/a:redhat:enterprise_linux:clutter-gst3-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugins, p-cpe:/a:redhat:enterprise_linux:geoclue2-devel, p-cpe:/a:redhat:enterprise_linux:vala, p-cpe:/a:redhat:enterprise_linux:webkitgtk4-plugin-process-gtk2, p-cpe:/a:redhat:enterprise_linux:accountsservice-libs, p-cpe:/a:redhat:enterprise_linux:gnome-online-miners, p-cpe:/a:redhat:enterprise_linux:yelp-xsl-devel, p-cpe:/a:redhat:enterprise_linux:libwayland-client, p-cpe:/a:redhat:enterprise_linux:control-center, p-cpe:/a:redhat:enterprise_linux:poppler-cpp, p-cpe:/a:redhat:enterprise_linux:harfbuzz, p-cpe:/a:redhat:enterprise_linux:freetype-demos, p-cpe:/a:redhat:enterprise_linux:gcr, p-cpe:/a:redhat:enterprise_linux:gtk3-immodule-xim, p-cpe:/a:redhat:enterprise_linux:gdm, p-cpe:/a:redhat:enterprise_linux:fontconfig-devel-doc, p-cpe:/a:redhat:enterprise_linux:gnome-calculator, p-cpe:/a:redhat:enterprise_linux:turbojpeg, p-cpe:/a:redhat:enterprise_linux:upower-devel, p-cpe:/a:redhat:enterprise_linux:yelp-libs, p-cpe:/a:redhat:enterprise_linux:dconf-editor, p-cpe:/a:redhat:enterprise_linux:evolution-spamassassin, p-cpe:/a:redhat:enterprise_linux:nautilus-extensions, p-cpe:/a:redhat:enterprise_linux:gnome-disk-utility, p-cpe:/a:redhat:enterprise_linux:flatpak, p-cpe:/a:redhat:enterprise_linux:libgdata, p-cpe:/a:redhat:enterprise_linux:at-spi2-atk, p-cpe:/a:redhat:enterprise_linux:python2-gexiv2, p-cpe:/a:redhat:enterprise_linux:at-spi2-atk-devel, p-cpe:/a:redhat:enterprise_linux:libgepub-devel, p-cpe:/a:redhat:enterprise_linux:freetype, p-cpe:/a:redhat:enterprise_linux:libjpeg-turbo-utils, p-cpe:/a:redhat:enterprise_linux:evince-browser-plugin, p-cpe:/a:redhat:enterprise_linux:cheese-libs-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-bookmarks, p-cpe:/a:redhat:enterprise_linux:gnome-boxes, p-cpe:/a:redhat:enterprise_linux:vino, p-cpe:/a:redhat:enterprise_linux:gnome-software, p-cpe:/a:redhat:enterprise_linux:libical-glib, p-cpe:/a:redhat:enterprise_linux:nautilus, p-cpe:/a:redhat:enterprise_linux:gucharmap, p-cpe:/a:redhat:enterprise_linux:gnome-software-editor, p-cpe:/a:redhat:enterprise_linux:geoclue2, p-cpe:/a:redhat:enterprise_linux:evince-dvi, p-cpe:/a:redhat:enterprise_linux:gdm-pam-extensions-devel, p-cpe:/a:redhat:enterprise_linux:compat-exiv2-023, p-cpe:/a:redhat:enterprise_linux:libpeas-loader-python, p-cpe:/a:redhat:enterprise_linux:pyatspi, p-cpe:/a:redhat:enterprise_linux:evolution-data-server-langpacks, p-cpe:/a:redhat:enterprise_linux:gedit, p-cpe:/a:redhat:enterprise_linux:gobject-introspection-devel, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-fr, p-cpe:/a:redhat:enterprise_linux:gnome-online-accounts, p-cpe:/a:redhat:enterprise_linux:grilo-devel, p-cpe:/a:redhat:enterprise_linux:glade-devel, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-it, p-cpe:/a:redhat:enterprise_linux:libosinfo, p-cpe:/a:redhat:enterprise_linux:xdg-desktop-portal-gtk, p-cpe:/a:redhat:enterprise_linux:evolution, p-cpe:/a:redhat:enterprise_linux:webkitgtk4-jsc, p-cpe:/a:redhat:enterprise_linux:libgovirt, p-cpe:/a:redhat:enterprise_linux:gupnp-devel, p-cpe:/a:redhat:enterprise_linux:libical-glib-devel, p-cpe:/a:redhat:enterprise_linux:zenity, p-cpe:/a:redhat:enterprise_linux:libsecret, p-cpe:/a:redhat:enterprise_linux:fwupdate-efi, p-cpe:/a:redhat:enterprise_linux:glade, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-dash-to-dock, p-cpe:/a:redhat:enterprise_linux:gnome-devel-docs, p-cpe:/a:redhat:enterprise_linux:gnome-system-monitor, p-cpe:/a:redhat:enterprise_linux:gjs-tests, p-cpe:/a:redhat:enterprise_linux:devhelp, p-cpe:/a:redhat:enterprise_linux:gnome-clocks, p-cpe:/a:redhat:enterprise_linux:flatpak-libs, p-cpe:/a:redhat:enterprise_linux:glib2-static, p-cpe:/a:redhat:enterprise_linux:gstreamer1-plugins-base-devel, p-cpe:/a:redhat:enterprise_linux:gnome-themes-standard, p-cpe:/a:redhat:enterprise_linux:control-center-filesystem, p-cpe:/a:redhat:enterprise_linux:poppler-glib, p-cpe:/a:redhat:enterprise_linux:libgtop2, p-cpe:/a:redhat:enterprise_linux:gcr-devel, p-cpe:/a:redhat:enterprise_linux:vala-doc, p-cpe:/a:redhat:enterprise_linux:gom, p-cpe:/a:redhat:enterprise_linux:atk-devel, p-cpe:/a:redhat:enterprise_linux:gvfs-goa, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-auto-move-windows, p-cpe:/a:redhat:enterprise_linux:gobject-introspection, p-cpe:/a:redhat:enterprise_linux:wayland-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-colorpicker, p-cpe:/a:redhat:enterprise_linux:google-noto-emoji-fonts, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-pt_br, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-apps-menu, p-cpe:/a:redhat:enterprise_linux:evolution-data-server-devel, p-cpe:/a:redhat:enterprise_linux:evolution-mapi-langpacks, p-cpe:/a:redhat:enterprise_linux:freetype-devel, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-panel-favorites, p-cpe:/a:redhat:enterprise_linux:poppler, p-cpe:/a:redhat:enterprise_linux:openchange, p-cpe:/a:redhat:enterprise_linux:gsettings-desktop-schemas-devel, p-cpe:/a:redhat:enterprise_linux:packagekit-yum-plugin, p-cpe:/a:redhat:enterprise_linux:json-glib-tests, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-terminal, p-cpe:/a:redhat:enterprise_linux:glade-libs, p-cpe:/a:redhat:enterprise_linux:libgnomekbd-devel, p-cpe:/a:redhat:enterprise_linux:totem-pl-parser-devel, p-cpe:/a:redhat:enterprise_linux:geocode-glib, p-cpe:/a:redhat:enterprise_linux:gvfs-mtp, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-drive-menu, p-cpe:/a:redhat:enterprise_linux:gstreamer1-plugins-base, p-cpe:/a:redhat:enterprise_linux:gjs-devel, p-cpe:/a:redhat:enterprise_linux:glib-networking-tests, p-cpe:/a:redhat:enterprise_linux:poppler-utils, p-cpe:/a:redhat:enterprise_linux:turbojpeg-devel, p-cpe:/a:redhat:enterprise_linux:packagekit, p-cpe:/a:redhat:enterprise_linux:pango-tests, p-cpe:/a:redhat:enterprise_linux:evolution-help, p-cpe:/a:redhat:enterprise_linux:gupnp-igd, p-cpe:/a:redhat:enterprise_linux:gnome-desktop3, p-cpe:/a:redhat:enterprise_linux:yelp-tools, p-cpe:/a:redhat:enterprise_linux:flatpak-devel, p-cpe:/a:redhat:enterprise_linux:evince-libs, p-cpe:/a:redhat:enterprise_linux:cheese, p-cpe:/a:redhat:enterprise_linux:fontconfig, p-cpe:/a:redhat:enterprise_linux:gnome-initial-setup, p-cpe:/a:redhat:enterprise_linux:gspell-devel, p-cpe:/a:redhat:enterprise_linux:rhythmbox-devel, p-cpe:/a:redhat:enterprise_linux:packagekit-gtk3-module, p-cpe:/a:redhat:enterprise_linux:gvfs-smb, p-cpe:/a:redhat:enterprise_linux:adwaita-icon-theme, p-cpe:/a:redhat:enterprise_linux:at-spi2-core, p-cpe:/a:redhat:enterprise_linux:flatpak-builder, p-cpe:/a:redhat:enterprise_linux:libjpeg-turbo-devel, p-cpe:/a:redhat:enterprise_linux:libwayland-server, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-alternate-tab, p-cpe:/a:redhat:enterprise_linux:vala-devel, p-cpe:/a:redhat:enterprise_linux:gnome-session-custom-session, p-cpe:/a:redhat:enterprise_linux:gnome-shell, p-cpe:/a:redhat:enterprise_linux:openchange-client, p-cpe:/a:redhat:enterprise_linux:poppler-cpp-devel, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-smartspaces, p-cpe:/a:redhat:enterprise_linux:webkitgtk4-doc, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-ru, p-cpe:/a:redhat:enterprise_linux:accountsservice, p-cpe:/a:redhat:enterprise_linux:cheese-libs, p-cpe:/a:redhat:enterprise_linux:osinfo-db, p-cpe:/a:redhat:enterprise_linux:mutter-devel, p-cpe:/a:redhat:enterprise_linux:cairo-tools, p-cpe:/a:redhat:enterprise_linux:fwupdate, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-wordcompletion, p-cpe:/a:redhat:enterprise_linux:cairo-devel, p-cpe:/a:redhat:enterprise_linux:webkitgtk4-jsc-devel, p-cpe:/a:redhat:enterprise_linux:accountsservice-devel, p-cpe:/a:redhat:enterprise_linux:upower, p-cpe:/a:redhat:enterprise_linux:gupnp-igd-devel, p-cpe:/a:redhat:enterprise_linux:gvfs-devel, p-cpe:/a:redhat:enterprise_linux:valadoc-devel, p-cpe:/a:redhat:enterprise_linux:gupnp-igd-python, p-cpe:/a:redhat:enterprise_linux:gnome-bluetooth-libs, p-cpe:/a:redhat:enterprise_linux:wayland, p-cpe:/a:redhat:enterprise_linux:evolution-data-server-tests, p-cpe:/a:redhat:enterprise_linux:libgovirt-devel, p-cpe:/a:redhat:enterprise_linux:librsvg2-tools, p-cpe:/a:redhat:enterprise_linux:glibmm24-devel, p-cpe:/a:redhat:enterprise_linux:clutter-gst3, p-cpe:/a:redhat:enterprise_linux:adwaita-cursor-theme, p-cpe:/a:redhat:enterprise_linux:brasero, p-cpe:/a:redhat:enterprise_linux:gucharmap-libs, p-cpe:/a:redhat:enterprise_linux:glibmm24-doc, p-cpe:/a:redhat:enterprise_linux:gupnp-docs, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-launch-new-instance, p-cpe:/a:redhat:enterprise_linux:gvfs, p-cpe:/a:redhat:enterprise_linux:evolution-bogofilter, p-cpe:/a:redhat:enterprise_linux:gnome-desktop3-tests, p-cpe:/a:redhat:enterprise_linux:libgexiv2-devel, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-native-window-placement, p-cpe:/a:redhat:enterprise_linux:gnome-font-viewer, p-cpe:/a:redhat:enterprise_linux:gedit-plugin-colorschemer, p-cpe:/a:redhat:enterprise_linux:gvfs-tests, p-cpe:/a:redhat:enterprise_linux:nautilus-devel, p-cpe:/a:redhat:enterprise_linux:xdg-desktop-portal, p-cpe:/a:redhat:enterprise_linux:gnome-dictionary, p-cpe:/a:redhat:enterprise_linux:gnome-shell-extension-updates-dialog, p-cpe:/a:redhat:enterprise_linux:rhythmbox, p-cpe:/a:redhat:enterprise_linux:packagekit-gstreamer-plugin, p-cpe:/a:redhat:enterprise_linux:gstreamer1-plugins-base-tools, p-cpe:/a:redhat:enterprise_linux:gnome-packagekit-updater, p-cpe:/a:redhat:enterprise_linux:gvfs-afc, p-cpe:/a:redhat:enterprise_linux:pango-devel, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-es, p-cpe:/a:redhat:enterprise_linux:rest-devel, p-cpe:/a:redhat:enterprise_linux:gtksourceview3, p-cpe:/a:redhat:enterprise_linux:gnome-contacts, p-cpe:/a:redhat:enterprise_linux:libpeas-devel, p-cpe:/a:redhat:enterprise_linux:gdm-devel, p-cpe:/a:redhat:enterprise_linux:gspell, p-cpe:/a:redhat:enterprise_linux:wayland-protocols, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-hu, p-cpe:/a:redhat:enterprise_linux:gnome-getting-started-docs-gl, p-cpe:/a:redhat:enterprise_linux:libappstream-glib-builder-devel, p-cpe:/a:redhat:enterprise_linux:glib2-doc, p-cpe:/a:redhat:enterprise_linux:evince-nautilus, p-cpe:/a:redhat:enterprise_linux:libgxps-devel, p-cpe:/a:redhat:enterprise_linux:gtksourceview3-tests, p-cpe:/a:redhat:enterprise_linux:devhelp-devel
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/30/2018
Vulnerability Publication Date: 5/4/2018
Reference Information
CVE: CVE-2015-9381, CVE-2015-9382, CVE-2017-18267, CVE-2017-2862, CVE-2018-10733, CVE-2018-10767, CVE-2018-10768, CVE-2018-11712, CVE-2018-11713, CVE-2018-12910, CVE-2018-13988, CVE-2018-14036, CVE-2018-4121, CVE-2018-4200, CVE-2018-4204