21 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-37290
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename application crash via a pasted ZIP archive. CVE-2022-37290 Note that Nessus relies on the...
OESA-2024-1702 nautilus security update
It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...
RHEL 9 : nautilus (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nautilus: NULL pointer dereference via pasting crafted zip file CVE-2022-37290 Note that Nessus has not tested for...
OESA-2024-1628 nautilus security update
It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...
OESA-2024-1631 nautilus security update
It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...
OESA-2024-1632 nautilus security update
It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fixes: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename...
Fedora 37 : nautilus (2023-dbe1157188)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-dbe1157188 advisory. Update to 43.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
openSUSE: Security Advisory for nautilus (SUSE-SU-2023:0006-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : nautilus (ALAS-2023-2331)
The version of nautilus installed on the remote host is prior to 3.26.3.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2331 advisory. GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename application crash via a pasted ZIP archive. CVE-2022-3729...
Medium: nautilus
Issue Overview: GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename application crash via a pasted ZIP archive. CVE-2022-37290 Affected Packages: nautilus Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between A...
Mageia: Security Advisory (MGASA-2023-0011)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5786-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: gnome-shell-search-provider-nautilus / libnautilus-extension1 / etc (SUSE-SU-2023:0006-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0006-1 advisory. - CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives bsc1205418. Tenable has extract...
SUSE-SU-2023:0006-1 Security update for nautilus
This update for nautilus fixes the following issues: - CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives bsc1205418...
SUSE: Security Advisory (SUSE-SU-2022:4394-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:4393-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12: gnome-shell-search-provider-nautilus / libnautilus-extension1 / etc (SUSE-SU-2022:4394-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4394-1 advisory. - CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives bsc1205418. Tenable has extracted the precedi...
SUSE-SU-2022:4394-1 Security update for nautilus
This update for nautilus fixes the following issues: - CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives bsc1205418...
CVE-2022-37290
GNOME Nautilus 42.2 allows a NULL pointer dereference and getbasename application crash via a pasted ZIP archive...
CVE-2022-37290
CVE-2022-37290 affects GNOME Nautilus (GNOME Nautilus 42.2) and is triggered by pasting a crafted ZIP archive, causing a NULL pointer dereference and an application crash. The vulnerability is exploitable locally with low privileges and no user interaction required, per the CVSS data. Several con...