Back to search
CVE-2020-17489
Published: Aug 11, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password shown in cleartext at login time, it is then visible for a brief moment upon a logout. (If the password were never shown in cleartext, only the password length is revealed.)
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/2997
x_refsource_MISC
USN-4464-1
vendor-advisory
x_refsource_UBUNTU
GLSA-202009-08
vendor-advisory
x_refsource_GENTOO
[debian-lts-announce] 20200915 [SECURITY] [DLA 2374-1] gnome-shell security update
mailing-list
x_refsource_MLIST
openSUSE-SU-2020:1861
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now