Updated gnome-autoar packages fix a security vulnerability

2021-06-2320:11:28

Gentoo Foundation

advisories.mageia.org

0.0005 Low

EPSS

Percentile

16.6%

JSON

gnome-autoar: directory traversal during extraction because it lacks a check of whether a file’s parent is a symlink in certain complex situations (CVE-2021-28650). Also the previous update (Bug 28454) introduced a regression, fixed here.

OSVersionArchitecturePackageVersionFilename
Mageia7noarchgnome-autoar< 0.3.1-1gnome-autoar-0.3.1-1.mga7
Mageia8noarchgnome-autoar< 0.3.1-1gnome-autoar-0.3.1-1.mga8