Search CVE reports
1 – 4 of 4 results
Some fixes available 9 of 29
GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive.
3 affected packages
nautilus, caja, nemo
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nautilus | Fixed | Fixed | Fixed | Fixed |
| caja | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| nemo | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.32 prior to 3.32.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into...
1 affected package
nautilus
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nautilus | — | — | — | Not affected |
GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file's Exec field launches a...
1 affected package
nautilus
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nautilus | Not affected | Not affected | Not affected | Not affected |
Untrusted search path vulnerability in the Python language bindings for Nautilus (nautilus-python) allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to...
1 affected package
nautilus-python
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nautilus-python | — | — | — | — |