Ubuntu GNOME Path Traversal
Bug #1901240 reported by
Yiğit Can Yılmaz
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnome-autoar (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Summary:
A malicious package may be able to overwrite arbitrary files
Proof of concept:
1- Download "example.tar"
2- Click on the right button on a mouse (on "example.tar")
3- Click "Extract Here"
4- Check the "/tmp" path for "test" file
Version:
Ubuntu 20.04.1
GNOME Files 3.36.3-stable
CVE References
affects: | ubuntu → nautilus (Ubuntu) |
Changed in gnome-autoar (Ubuntu): | |
status: | New → Confirmed |
To post a comment you must log in.
nautilus (which provides the 'Extract here') uses gnome-autoar under the hood to perform the extraction so assigning this bug to that.