Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.9
CVE-2020-36314
- EPSS 0.2%
- Veröffentlicht 07.04.2021 12:15:12
- Zuletzt bearbeitet 21.11.2024 05:29:15
fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink in certain complex situations. NOTE:...
3.9
CVE-2020-11736
- EPSS 0.06%
- Veröffentlicht 13.04.2020 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:58:30
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the intended extraction location.
4.3
CVE-2019-16680
- EPSS 1.79%
- Veröffentlicht 21.09.2019 21:15:10
- Zuletzt bearbeitet 21.11.2024 04:30:58
An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.
1