Synopsis: Moderate: gvfs security and bug fix update Advisory ID: SLSA-2019:2145-1 Issue Date: 2019-08-06 CVE Numbers: CVE-2019-3827 -- Security Fix(es): * gvfs: Incorrect authorization in admin backend allows privileged users to read and modify arbitrary files without prompting for password (CVE-2019-3827) -- SL7 x86_64 gvfs-1.36.2-3.el7.i686.rpm gvfs-smb-1.36.2-3.el7.x86_64.rpm gvfs-afp-1.36.2-3.el7.x86_64.rpm gvfs-mtp-1.36.2-3.el7.x86_64.rpm gvfs-devel-1.36.2-3.el7.x86_64.rpm gvfs-client-1.36.2-3.el7.x86_64.rpm gvfs-gphoto2-1.36.2-3.el7.x86_64.rpm gvfs-1.36.2-3.el7.x86_64.rpm gvfs-devel-1.36.2-3.el7.i686.rpm gvfs-client-1.36.2-3.el7.i686.rpm gvfs-afc-1.36.2-3.el7.x86_64.rpm gvfs-goa-1.36.2-3.el7.x86_64.rpm gvfs-fuse-1.36.2-3.el7.x86_64.rpm gvfs-archive-1.36.2-3.el7.x86_64.rpm gvfs-tests-1.36.2-3.el7.x86_64.rpm gvfs-debuginfo-1.36.2-3.el7.i686.rpm gvfs-debuginfo-1.36.2-3.el7.x86_64.rpm - Scientific Linux Development Team