EUVD-2023-56811

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-52138

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve...

OPENSUSE-SU-2024:13747-1 caja-engrampa-1.26.1-2.1 on GA media

These are all security issues fixed in the caja-engrampa-1.26.1-2.1 package on the GA media of openSUSE Tumbleweed...

OESA-2024-1588 engrampa security update

Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats. Security Fixes: Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be...

OESA-2024-1589 engrampa security update

Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats. Security Fixes: Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be...

ROS-20240329-08

The Engrampa archive manager vulnerability is related to the lack of symbolic link location checking, which leads to arbitrary writing of files to unintended locations. Exploitation of the vulnerability could allow an attacker acting remotely to upload files to arbitrary locations on the system...

Important: engrampa

Issue Overview: Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full Remote Command Execution RCE on the target. While handling CPIO archives, the Engrampa Archive manager follows symlin...

Amazon Linux 2 : engrampa (ALASMATE-DESKTOP1.X-2024-008)

The version of engrampa installed on the remote host is prior to 1.24.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2MATE-DESKTOP1.X-2024-008 advisory. Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal...

Debian: Security Advisory (DLA-3741-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3741-1] engrampa security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3741-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 26, 2024 https://wiki.debian.org/LTS -...

DLA-3741-1 engrampa - security update

Bulletin has no description...

Debian dla-3741 : engrampa - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3741 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3741-1 [email protected] https://www.debian.org/lts/security/...

Debian: Security Advisory (DSA-5625-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5625 : engrampa - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5625 advisory. - Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full...

Path Traversal

engrampa is vulneravle to Path Traversal. The vulnerability occurs an application does not properly validate or sanitize user input during the handling of CPIO archives which does not adequately check the symlink location. It allows an attacker arbitrary file writes to unintended locations and ca...

[SECURITY] [DSA 5625-1] engrampa security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5625-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 16, 2024 https://www.debian.org/security/faq -...

DSA-5625-1 engrampa - security update

Bulletin has no description...

[SECURITY] Fedora 38 Update: engrampa-1.26.2-1.fc38

Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats...

[SECURITY] Fedora 39 Update: engrampa-1.26.2-1.fc39

Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats...

Fedora 39 : engrampa (2024-23085d548c)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-23085d548c advisory. - update to 1.26.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...