Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-16680

Опубликовано: 21 сент. 2019
Источник: ubuntu
Приоритет: medium
CVSS2: 2.6
CVSS3: 4.3

Описание

An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.

РелизСтатусПримечание
bionic

released

3.28.0-1ubuntu1.1
devel

not-affected

disco

not-affected

3.32.1-1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

3.28.0-1ubuntu1.1
esm-infra/xenial

released

3.16.5-0ubuntu1.3
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

released

3.30.0-1

Показывать по

Ссылки на источники

2.6 Low

CVSS2

4.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-16680

CVSS3: 4.3
redhat
почти 8 лет назад

An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.

nvd логотип

CVE-2019-16680

CVSS3: 4.3
nvd
около 6 лет назад

An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.

debian логотип

CVE-2019-16680

CVSS3: 4.3
debian
около 6 лет назад

An issue was discovered in GNOME file-roller before 3.29.91. It allows ...

suse-cvrf логотип

SUSE-SU-2020:1088-1

suse-cvrf
больше 5 лет назад

Security update for file-roller

github логотип

GHSA-63pg-53ch-332g

CVSS3: 4.3
github
больше 3 лет назад

An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.

2.6 Low

CVSS2

4.3 Medium

CVSS3