openSUSE-SU-2017:2273-1: Security update for gnome-shell

openSUSE Security Update: Security update for gnome-shell ______________________________________________________________________________ Announcement ID: openSUSE-SU-2017:2273-1 Rating: low References: #1008539 #1034584 #1034827 #1036494 #1047262 Cross-References: CVE-2017-8288 Affected Products: openSUSE Leap 42.3 openSUSE Leap 42.2 ______________________________________________________________________________ An update that solves one vulnerability and has four fixes is now available. Description: This update for gnome-shell provides the following fixes: - Fix not intuitive login screen for root user (bsc#1047262) - Disable session selection button when it's hidden in user switch dialog (bsc#1034584, bsc#1034827) - Fix app windows overlay app list in overview screen (bsc#1008539) - Properly handle failures when loading extensions (bsc#1036494, CVE-2017-8288) This update was imported from the SUSE:SLE-12-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2017-974=1 - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-974=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.3 (x86_64): gnome-shell-3.20.4-13.1 gnome-shell-browser-plugin-3.20.4-13.1 gnome-shell-browser-plugin-debuginfo-3.20.4-13.1 gnome-shell-calendar-3.20.4-13.1 gnome-shell-calendar-debuginfo-3.20.4-13.1 gnome-shell-debuginfo-3.20.4-13.1 gnome-shell-debugsource-3.20.4-13.1 gnome-shell-devel-3.20.4-13.1 - openSUSE Leap 42.3 (noarch): gnome-shell-lang-3.20.4-13.1 - openSUSE Leap 42.2 (x86_64): gnome-shell-3.20.4-10.3.1 gnome-shell-browser-plugin-3.20.4-10.3.1 gnome-shell-browser-plugin-debuginfo-3.20.4-10.3.1 gnome-shell-calendar-3.20.4-10.3.1 gnome-shell-calendar-debuginfo-3.20.4-10.3.1 gnome-shell-debuginfo-3.20.4-10.3.1 gnome-shell-debugsource-3.20.4-10.3.1 gnome-shell-devel-3.20.4-10.3.1 - openSUSE Leap 42.2 (noarch): gnome-shell-lang-3.20.4-10.3.1 References: https://www.suse.com/security/cve/CVE-2017-8288.html https://bugzilla.suse.com/1008539 https://bugzilla.suse.com/1034584 https://bugzilla.suse.com/1034827 https://bugzilla.suse.com/1036494 https://bugzilla.suse.com/1047262