Sandbox Escape Vulnerability in GNOME Nautilus by GNOME
CVE-2019-11461

7.8HIGH

Key Information:

Vendor

Gnome
Status
Nautilus
Vendor
CVE Published:
22 April 2019

What is CVE-2019-11461?

A potential vulnerability was identified in GNOME Nautilus that allows a malicious thumbnailer to escape its contained environment. The issue arises from improper filtering of the TIOCSTI ioctl on 64-bit systems, enabling attackers to push characters into the input buffer of the thumbnailer's controlling terminal. This opens a pathway for unauthorized access and command execution outside the intended sandbox, particularly when the thumbnailer has a controlling terminal. Affected versions include Nautilus 3.30 prior to 3.30.6 and Nautilus 3.32 prior to 3.32.1.

References

https://gitlab.gnome.org/GNOME/nautilus/issues/987
x_refsource_MISC
https://security.gentoo.org/glsa/201908-27
vendor-advisoryx_refsource_GENTOO
http://lists.opensuse.org/opensuse-security-announce/2019...
vendor-advisoryx_refsource_SUSE

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2019-11461 : Sandbox Escape Vulnerability in GNOME Nautilus by GNOME