8 matches found
Ubuntu 20.04 LTS / 22.04 LTS : UnRAR vulnerabilities (USN-7350-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7350-1 advisory. It was discovered that UnRAR incorrectly handled certain paths. If a user or automated system were tricked into extracting a specially crafte...
CBL Mariner 2.0 Security Update: clamav (CVE-2022-48579)
The version of clamav installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-48579 advisory. - UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains...
CVE-2022-48579 affecting package clamav for versions less than 0.105.2-4
CVE-2022-48579 affecting package clamav for versions less than 0.105.2-4. A patched version of the package is available...
CVE-2022-48579 affecting package clamav for versions less than 0.105.2-2
CVE-2022-48579 affecting package clamav for versions less than 0.105.2-2. A patched version of the package is available...
Debian: Security Advisory (DLA-3535-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3535-1] unrar-nonfree security update
Debian LTS Advisory DLA-3535-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 17, 2023 https://wiki.debian.org/LTS Package : unrar-nonfree Version : 1:5.6.6-1+deb10u3 CVE ID : CVE-2022-48579 It was discovered that UnRAR, an unarchiver for rar files, allows...
DEBIAN-CVE-2022-48579
UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains...
CVE-2022-48579
CVE-2022-48579 affects UnRAR prior to version 6.2.3, enabling extraction of files outside the destination folder via symlink chains. Public sources in connected documents confirm vulnerable versions and indicate fixes/updates: e.g., UnRAR 6.2.3+ addresses the issue; Debian LTS advisory DLA-3535-1...