Amazon Linux 1 Security Advisory: ALAS-2019-1256
Advisory Release Date: 2019-08-07 23:00 Pacific
Advisory Updated Date: 2019-08-12 18:19 Pacific
file_copy_fallback in gio/gfile.c in GNOME GLib does not properly restrict file permissions while a copy operation is in progress. Instead, default permissions are used.(CVE-2019-12450)
Affected Packages:
glib2
Issue Correction:
Run yum update glib2 to update your system.
i686:
glib2-2.36.3-5.21.amzn1.i686
glib2-fam-2.36.3-5.21.amzn1.i686
glib2-debuginfo-2.36.3-5.21.amzn1.i686
glib2-devel-2.36.3-5.21.amzn1.i686
noarch:
glib2-doc-2.36.3-5.21.amzn1.noarch
src:
glib2-2.36.3-5.21.amzn1.src
x86_64:
glib2-debuginfo-2.36.3-5.21.amzn1.x86_64
glib2-2.36.3-5.21.amzn1.x86_64
glib2-fam-2.36.3-5.21.amzn1.x86_64
glib2-devel-2.36.3-5.21.amzn1.x86_64