[SECURITY] Fedora 43 Update: Thunar-4.20.6-1.fc43

Thunar is a new modern file manager for the Xfce Desktop Environment. It has been designed from the ground up to be fast and easy-to-use. Its user interfa ce is clean and intuitive, and does not include any confusing or useless options. Thunar is fast and responsive with a good start up time and...

Fedora 43 : Thunar (2025-7a1a0e5bd8)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-7a1a0e5bd8 advisory. Update to 4.20.6, the latest stable bugfix release. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note th...

Fedora: Security Advisory (FEDORA-2025-7a1a0e5bd8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 44 : Thunar (2025-934da27583)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-934da27583 advisory. Automatic update for Thunar-4.20.6-1.fc44. Changelog Sat Oct 25 2025 Kevin Fenzi - 4.20.6-1 - Update to 4.20.6. Fixes rhbz2406294 Tenable has extracted the...

EUVD-2018-10127

Malware in sbrugna...

EUVD-2021-19405

Malware in sbrugna...

EUVD-2011-1588

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-18398

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and...

Linux Distros Unpatched Vulnerability : CVE-2021-32563

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a differen...

Thunar: Arbitrary Code Execution

Background Thunar is a modern file manager for the Xfce Desktop Environment. Thunar has been designed from the ground up to be fast and easy to use. Its user interface is clean and intuitive and does not include any confusing or useless options by default. Thunar starts up quickly and navigating...

GLSA-202402-20 : Thunar: Arbitrary Code Execution

The remote host is affected by the vulnerability described in GLSA-202402-20 Thunar: Arbitrary Code Execution - An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a different program based on the fi...

SUSE CVE-2011-1588

Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error...

SUSE CVE-2018-18398

Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey input method for file searches within File Manager, leading to an out-of-bounds read and SEGV. This could potentially be exploited by an arbitrary local user who creates files in /tmp before the victim uses this input method...

SUSE CVE-2021-32563

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a different program based on the file type without user confirmation. This could be used to achieve code execution...

Mageia: Security Advisory (MGASA-2021-0306)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OESA-2021-1298 Thunar security update

Thunar is a modern file manager for the Unix/Linux desktop, aiming to be easy-to-use and fast. Security Fixes: An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a different program based on the fil...

Updated thunar packages fix a security vulnerability

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a different program based on the file type without user confirmation. This could be used to achieve code execution CVE-2021-32563...

MGASA-2021-0306 Updated thunar packages fix a security vulnerability

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a different program based on the file type without user confirmation. This could be used to achieve code execution CVE-2021-32563...

Security fix for the ALT Linux 9 package thunar version 1.8.17-alt1

1.8.17-alt1 built May 17, 2021 Mikhail Efremov in task 271820 --- May 14, 2021 Mikhail Efremov - Updated to 1.8.17 fixes: CVE-2021-32563...

Remote Code Execution (RCE)

thunar is vulnerable to remote code execution. An attacker is able to inject malicious code via a file to delegate the system to a different program based on the file type when the file is called as a command-line argument...