CVE-2022-37290: GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive. Potential patch: https://gitlab.gnome.org/GNOME/nautilus/-/merge_requests/1001
This has been fixed in 44.0 according to the tags for the relevant commits.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=dafd1a18a8a8ccc232fbe240a01ee69809299ebd commit dafd1a18a8a8ccc232fbe240a01ee69809299ebd Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-08-09 09:22:03 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-08-09 09:22:25 +0000 [ GLSA 202408-17 ] Nautilus: Denial of Service Bug: https://bugs.gentoo.org/881509 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202408-17.xml | 42 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+)