dino
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Modern XMPP (Jabber) chat client written in Vala |
| Version | 0.4.3-4 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2043 | 0.2.0-3 | 0.2.1-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-33896 | AVG-2043 | Medium | Yes | Directory traversal | It was discovered that when a user receives and downloads a file in Dino before version 0.2.1, URI-encoded path separators in the file name will be decoded,... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 20 Jul 2021 | ASA-202107-35 | AVG-2043 | Medium | directory traversal |