๐ USN-4733-2: GNOME Autoar regression
๐ก Newskategorie: Unix Server
๐ Quelle: ubuntu.com
USN-4733-1 fixed a vulnerability in GNOME Autoar. The upstream fix introduced a regression when extracting archives containing directories. This update fixes the problem. Original advisory details: Yiฤit Can Yฤฑlmaz discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution. ...