nautilus security update(DSA-3994-1) nautilus_3.22.3-1+deb9u1_i386.deb
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
3.908%
CVE Information
Patch Details
No records found
References
http://www.debian.org/security/2017/dsa-3994
http://www.securityfocus.com/bid/101012
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860268
https://bugzilla.gnome.org/show_bug.cgi?id=777991
https://github.com/freedomofpress/securedrop/issues/2238
https://github.com/GNOME/nautilus/commit/1630f53481f445ada0a455e9979236d31a8d3bb0
https://github.com/GNOME/nautilus/commit/bc919205bf774f6af3fa7154506c46039af5a69b
https://micahflee.com/2017/04/breaking-the-security-model-of-subgraph-os/