A tumbler security update has been released for SUSE Linux Enterprise 15 SP4.

openSUSE-SU-2022:10207-1: moderate: Security update for tumbler

openSUSE Security Update: Security update for tumbler
______________________________________________________________________________

Announcement ID: openSUSE-SU-2022:10207-1
Rating: moderate
References: #1203644 #1205210
Affected Products:
openSUSE Backports SLE-15-SP4
______________________________________________________________________________

An update that contains security fixes can now be installed.

Description:

This update for tumbler fixes the following issues:

tumbler was updated to version 4.16.1 (boo#1205210)
* gst-thumbnailer: Add mime type check (gxo#xfce/tumbler#65)
* desktop-thumbnailer: Guard against null path
* Fix typo in gthread version (gxo#xfce/tumbler!14)

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP4:

zypper in -t patch openSUSE-2022-10207=1


Package List:

- openSUSE Backports SLE-15-SP4 (aarch64 ppc64le s390x x86_64):

libtumbler-1-0-4.16.1-bp154.3.3.1
tumbler-4.16.1-bp154.3.3.1
tumbler-devel-4.16.1-bp154.3.3.1
tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1
tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1

- openSUSE Backports SLE-15-SP4 (noarch):

tumbler-doc-4.16.1-bp154.3.3.1
tumbler-lang-4.16.1-bp154.3.3.1

References:

  https://bugzilla.suse.com/1203644
  https://bugzilla.suse.com/1205210