In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper. https://gitlab.xfce.org/xfce/xfce4-settings/-/commit/55e3c5fb667e96ad1412cf249879262b369d28d7 https://gitlab.xfce.org/xfce/xfce4-settings/-/commit/f34a92a84f96268ad24a7a13fd5edc9f1d526110 https://gitlab.xfce.org/xfce/xfce4-settings/-/tags https://gitlab.xfce.org/xfce/xfce4-settings/-/issues/390
Created xfce4-settings tracking bugs for this issue: Affects: epel-all [bug 2145081] Affects: fedora-35 [bug 2145082] Affects: fedora-36 [bug 2145083] Affects: fedora-37 [bug 2145084]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.