Ubuntu Security Update USN-4937-2: GNOME Autoar regression

Thread starter LinuxBot
Start date Jun 7, 2021

LinuxBot

Member

Jun 7, 2021

USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a regression when extracting certain archives. This update fixes the problem. Original advisory details: Ondrej Holy discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 550 (members: 2, guests: 548)

Latest posts

Need help, dwm is killing itself when clicking URLs or links
- Latest: osprey
- 37 minutes ago
Desktop
What You Need To Know About Timeshift.
- Latest: Condobloke
- 43 minutes ago
General Linux Questions
Qsynth
- Latest: Condobloke
- Today at 5:25 AM
General Linux Questions
Thunderbird Mail
- Latest: wizardfromoz
- Today at 4:00 AM
Getting Started
Intel Blames Motherboard Makers — BIOSes Disable Thermal and Power Protection, causing issues
- Latest: Alexzee
- Today at 2:48 AM
Linux Hardware

Top