CVE 2022-37290
GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive.
Related bugs and status
CVE-2022-37290 (Candidate) is related to these bugs:
Bug #1998060: CVE-2022-37290: Pasted zip archive/invalid file causes NPD
Bug #2002575: Update nautilus to 43.2
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2002575 | Update nautilus to 43.2 | nautilus (Ubuntu) | High | Fix Released | ||
| 2002575 | Update nautilus to 43.2 | nautilus (Ubuntu Kinetic) | High | Fix Released | ||
Bug #2004475: Archive type selection drop-down in archive creation window is clipped
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2004475 | Archive type selection drop-down in archive creation window is clipped | nautilus (Ubuntu) | Medium | Fix Released | ||
| 2004475 | Archive type selection drop-down in archive creation window is clipped | nautilus (Ubuntu Jammy) | Medium | Fix Released | ||
| 2004475 | Archive type selection drop-down in archive creation window is clipped | Nautilus | Unknown | Fix Released | ||
Bug #2013338: Update nautilus to 42.6
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 2013338 | Update nautilus to 42.6 | nautilus (Ubuntu) | Medium | Fix Released | ||
| 2013338 | Update nautilus to 42.6 | nautilus (Ubuntu Jammy) | Medium | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
