file-roller

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Create and modify archives
Version 3.38.1-1 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1780 3.36.1-1 3.36.2-1 Medium Fixed
AVG-1779 3.38.0-2 3.38.1-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2020-36314 AVG-1779 Medium No Directory traversal
fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other software, allows Directory Traversal during extraction because...
CVE-2020-11736 AVG-1780 Medium No Directory traversal
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent...