2 matches found
UBUNTU-CVE-2021-28650
autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink in certain complex situations. NOTE: this issue exists because of an incomplet...
PT-2021-5613 · Gnome +8 · File Roller +8
Name of the Vulnerable Software and Affected Versions: File Roller versions through 3.38.0 Description: The issue is related to a directory traversal vulnerability during extraction, caused by the lack of a check for whether a file's parent is a symlink in certain complex situations. This...