CVE-2022-4055: 
Rocky Linux vulnerability analysis and mitigation

CVE-2022-4055 is a security vulnerability in xdg-utils that affects the xdg-mail component when configured to use Thunderbird for mailto URLs. The vulnerability was discovered and disclosed on November 19, 2022. The issue stems from improper parsing of mailto URLs that can lead to unauthorized attachment of files (NVD, Snyk).

The vulnerability occurs due to improper parsing of mailto URLs in xdg-mail when configured with Thunderbird. The issue allows additional headers to be passed to Thunderbird that should not be included according to RFC 2368 specifications. The vulnerability has been assigned a CVSS v3.1 base score of 7.4 (High), with the vector string CVSS:3.1/AV:N/AC:M/Au:N/C:N/I:C/A:N, indicating network attack vector with medium complexity (Rapid7, Snyk).

The vulnerability allows an attacker to create mailto URLs that appear safe to users but can actually attach files when clicked. This could potentially lead to unauthorized file attachments being included in emails without the user's knowledge or consent (NVD).

The vulnerability has been addressed in various Linux distributions through security patches. Amazon Linux AMI 2 has released a security patch (ALAS-2023-2002) to address this vulnerability (Rapid7).