File gnome-desktop-fix-CVE-2019-11460.patch of Package gnome-desktop.26597

Index: gnome-desktop-3.26.2/libgnome-desktop/gnome-desktop-thumbnail-script.c
===================================================================
--- gnome-desktop-3.26.2.orig/libgnome-desktop/gnome-desktop-thumbnail-script.c
+++ gnome-desktop-3.26.2/libgnome-desktop/gnome-desktop-thumbnail-script.c
@@ -333,7 +333,7 @@ setup_seccomp (GPtrArray  *argv_array,
     {SCMP_SYS (clone), &SCMP_A0 (SCMP_CMP_MASKED_EQ, CLONE_NEWUSER, CLONE_NEWUSER)},
 
     /* Don't allow faking input to the controlling tty (CVE-2017-5226) */
-    {SCMP_SYS (ioctl), &SCMP_A1(SCMP_CMP_EQ, (int)TIOCSTI)},
+    {SCMP_SYS (ioctl), &SCMP_A1(SCMP_CMP_MASKED_EQ, 0xFFFFFFFFu, (int)TIOCSTI)},
   };
 
   struct
openSUSE Build Service is sponsored by