AVG-2043 log
| Package | dino |
| Status | Fixed |
| Severity | Medium |
| Type | directory traversal |
| Affected | 0.2.0-3 |
| Fixed | 0.2.1-1 |
| Current | 0.4.3-4 [extra] |
| Ticket | None |
| Created | Mon Jun 7 19:20:32 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-33896 | Medium | Yes | Directory traversal | It was discovered that when a user receives and downloads a file in Dino before version 0.2.1, URI-encoded path separators in the file name will be decoded,... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 20 Jul 2021 | ASA-202107-35 | dino | directory traversal |