{"id":"SUSE-SU-2022:4394-1","summary":"Security update for nautilus","details":"This update for nautilus fixes the following issues:\n\n- CVE-2022-37290: Fixed a denial of service caused by pasted ZIP archives (bsc#1205418).\n","modified":"2026-02-04T02:17:02.267618Z","published":"2022-12-09T10:01:53Z","related":["CVE-2022-37290"],"upstream":["CVE-2022-37290"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224394-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1205418"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-37290"}],"affected":[{"package":{"name":"nautilus","ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP5","purl":"pkg:rpm/suse/nautilus&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.20.3-23.15.1"}]}],"ecosystem_specific":{"binaries":[{"nautilus-devel":"3.20.3-23.15.1","typelib-1_0-Nautilus-3_0":"3.20.3-23.15.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:4394-1.json"}},{"package":{"name":"nautilus","ecosystem":"SUSE:Linux Enterprise Server 12 SP5","purl":"pkg:rpm/suse/nautilus&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.20.3-23.15.1"}]}],"ecosystem_specific":{"binaries":[{"gnome-shell-search-provider-nautilus":"3.20.3-23.15.1","nautilus":"3.20.3-23.15.1","nautilus-lang":"3.20.3-23.15.1","libnautilus-extension1":"3.20.3-23.15.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:4394-1.json"}},{"package":{"name":"nautilus","ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","purl":"pkg:rpm/suse/nautilus&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.20.3-23.15.1"}]}],"ecosystem_specific":{"binaries":[{"gnome-shell-search-provider-nautilus":"3.20.3-23.15.1","nautilus":"3.20.3-23.15.1","nautilus-lang":"3.20.3-23.15.1","libnautilus-extension1":"3.20.3-23.15.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:4394-1.json"}},{"package":{"name":"nautilus","ecosystem":"SUSE:Linux Enterprise Workstation Extension 12 SP5","purl":"pkg:rpm/suse/nautilus&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.20.3-23.15.1"}]}],"ecosystem_specific":{"binaries":[{"libnautilus-extension1-32bit":"3.20.3-23.15.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:4394-1.json"}}],"schema_version":"1.7.3"}