{"schema_version":"1.7.2","id":"OESA-2022-2105","modified":"2022-11-18T11:04:37Z","published":"2022-11-18T11:04:37Z","upstream":["CVE-2022-45062"],"summary":"xfce4-settings security update","details":"This package includes the settings manager applications for the Xfce desktop.\r\n\r\nSecurity Fix(es):\r\n\r\nIn Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.(CVE-2022-45062)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS","name":"xfce4-settings","purl":"pkg:rpm/openEuler/xfce4-settings\u0026distro=openEuler-22.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.16.0-2.oe2203"}]}],"ecosystem_specific":{"aarch64":["xfce4-settings-debuginfo-4.16.0-2.oe2203.aarch64.rpm","xfce4-settings-debugsource-4.16.0-2.oe2203.aarch64.rpm","xfce4-settings-4.16.0-2.oe2203.aarch64.rpm"],"src":["xfce4-settings-4.16.0-2.oe2203.src.rpm"],"x86_64":["xfce4-settings-4.16.0-2.oe2203.x86_64.rpm","xfce4-settings-debuginfo-4.16.0-2.oe2203.x86_64.rpm","xfce4-settings-debugsource-4.16.0-2.oe2203.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-2105"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-45062"}],"database_specific":{"severity":"Critical"}}