Security update for file-roller (low)

2020-06-18T00:16:07
ID OPENSUSE-SU-2020:0825-1
Type suse
Reporter Suse
Modified 2020-06-18T00:16:07

Description

This update for file-roller fixes the following issues:

  • CVE-2020-11736: Fixed a directory traversal vulnerability due to improper checking whether a file's parent is an external symlink (bsc#1169428).
  • CVE-2019-16680: Fixed a path traversal vulnerability which could have allowed an overwriting of a file during extraction (bsc#1151585).

This update was imported from the SUSE:SLE-15:Update update project.