In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an
argument injection vulnerability in xfce4-mime-helper.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | xfce4-settings | < 4.16.2-1ubuntu2.22.04.1 | UNKNOWN |
ubuntu | 22.10 | noarch | xfce4-settings | < 4.16.2-1ubuntu2.22.10.1 | UNKNOWN |
ubuntu | 23.04 | noarch | xfce4-settings | < 4.18.0-1ubuntu1 | UNKNOWN |
gitlab.xfce.org/xfce/xfce4-settings/-/commit/55e3c5fb667e96ad1412cf249879262b369d28d7
gitlab.xfce.org/xfce/xfce4-settings/-/commit/55e3c5fb667e96ad1412cf249879262b369d28d7 (xfce4-settings-4.16.4)
gitlab.xfce.org/xfce/xfce4-settings/-/commit/f34a92a84f96268ad24a7a13fd5edc9f1d526110
gitlab.xfce.org/xfce/xfce4-settings/-/commit/f34a92a84f96268ad24a7a13fd5edc9f1d526110 (xfce4-settings-4.17.1)
gitlab.xfce.org/xfce/xfce4-settings/-/issues/390
gitlab.xfce.org/xfce/xfce4-settings/-/issues/390 (not public)
gitlab.xfce.org/xfce/xfce4-settings/-/tags
launchpad.net/bugs/cve/CVE-2022-45062
nvd.nist.gov/vuln/detail/CVE-2022-45062
security-tracker.debian.org/tracker/CVE-2022-45062
ubuntu.com/security/notices/USN-6141-1
www.cve.org/CVERecord?id=CVE-2022-45062