An update for nautilus is now available for openEuler-22.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2024-1628 Final 1.0 1.0 2024-05-24 Initial 2024-05-24 2024-05-24 openEuler SA Tool V1.0 2024-05-24 nautilus security update An update for nautilus is now available for openEuler-22.03-LTS. It's easier to manage your files for the GNOME desktop. Ability to browse directories on local and remote systems. preview folders and launch related programs. It is also handle icons on the GNOME desktop. Security Fix(es): GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive.(CVE-2022-37290) An update for nautilus is now available for openEuler-22.03-LTS. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium nautilus https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1628 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2022-37290 https://nvd.nist.gov/vuln/detail/CVE-2022-37290 openEuler-22.03-LTS nautilus-3.38.2-2.oe2203.aarch64.rpm nautilus-debugsource-3.38.2-2.oe2203.aarch64.rpm nautilus-devel-3.38.2-2.oe2203.aarch64.rpm nautilus-debuginfo-3.38.2-2.oe2203.aarch64.rpm nautilus-help-3.38.2-2.oe2203.noarch.rpm nautilus-3.38.2-2.oe2203.src.rpm nautilus-debuginfo-3.38.2-2.oe2203.x86_64.rpm nautilus-devel-3.38.2-2.oe2203.x86_64.rpm nautilus-3.38.2-2.oe2203.x86_64.rpm nautilus-debugsource-3.38.2-2.oe2203.x86_64.rpm GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive. 2024-05-24 CVE-2022-37290 openEuler-22.03-LTS Medium 5.5 AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H nautilus security update 2024-05-24 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1628