Ubuntu
gnome-autoar package

  1. Bug #1901240
  2. Comment #14

Comment 14 for bug 1901240

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package gnome-autoar - 0.2.3-1ubuntu0.1

---------------
gnome-autoar (0.2.3-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: directory traversal issue (LP: #1901240)
    - debian/patches/CVE-2020-36241.patch: do not extract files outside the
      destination dir in gnome-autoar/autoar-extractor.c.
    - CVE-2020-36241

 -- Marc Deslauriers <email address hidden> Wed, 10 Feb 2021 13:59:35 -0500