File nautilus-CVE-2022-37290.patch of Package nautilus.27042

Overview Repositories Revisions Requests Users Attributes Meta

File nautilus-CVE-2022-37290.patch of Package nautilus.27042

Index: nautilus-3.34.3/src/nautilus-dbus-manager.c
===================================================================
--- nautilus-3.34.3.orig/src/nautilus-dbus-manager.c
+++ nautilus-3.34.3/src/nautilus-dbus-manager.c
@@ -126,6 +126,11 @@ handle_create_folder (NautilusDBusFileOp
     file = g_file_new_for_uri (uri);
     basename = g_file_get_basename (file);
     parent_file = g_file_get_parent (file);
+    if (parent_file == NULL || basename == NULL)
+    {
+        g_dbus_method_invocation_return_error (invocation, G_FILE_ERROR, G_FILE_ERROR_EXIST, "Invalid uri: %s", uri);
+        return TRUE;
+    }
     parent_file_uri = g_file_get_uri (parent_file);
 
     g_application_hold (g_application_get_default ());
Index: nautilus-3.34.3/src/nautilus-file-operations.c
===================================================================
--- nautilus-3.34.3.orig/src/nautilus-file-operations.c
+++ nautilus-3.34.3/src/nautilus-file-operations.c
@@ -985,6 +985,12 @@ get_basename (GFile *file)
     if (name == NULL)
     {
         basename = g_file_get_basename (file);
+
+        if (basename == NULL)
+        {
+            return g_strdup (_("unknown"));
+        }
+
         if (g_utf8_validate (basename, -1, NULL))
         {
             name = basename;
@@ -4170,6 +4176,7 @@ get_unique_target_file (GFile      *src,
     if (dest == NULL)
     {
         basename = g_file_get_basename (src);
+        g_assert (basename == NULL);
 
         if (g_utf8_validate (basename, -1, NULL))
         {

Places

File nautilus-CVE-2022-37290.patch of Package nautilus.27042

Places