Package "file-roller"

Name:	file-roller
Description:	archive manager for GNOME
Latest version:	3.36.3-0ubuntu1.1
Release:	focal (20.04)
Level:	security
Repository:	main
Homepage:	https://wiki.gnome.org/Apps/FileRoller

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "file-roller"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "file-roller" in Focal

Repository	Area	Version
base	main	3.36.1-1
updates	main	3.36.3-0ubuntu1.1
PPA: Mint Upstream		43.0+mint1+wilma

Changelog

Version: 3.36.3-0ubuntu1.1 2021-04-26 15:07:33 UTC

file-roller (3.36.3-0ubuntu1.1) focal-security; urgency=medium * SECURITY UPDATE: Directory Traversal - debian/patches/CVE-2020-36314.patch: skip files with symlinks in parents in src/fr-archive-libarchive.c. - CVE-2020-36314 -- Leonidas Da Silva Barbosa <email address hidden> Fri, 09 Apr 2021 14:11:50 -0300

Source diff to previous version

CVE-2020-36314

fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other software, allows Directory Traversal during extraction

Version: 3.36.1-1ubuntu0.1 2020-04-28 22:43:09 UTC

file-roller (3.36.1-1ubuntu0.1) focal-security; urgency=medium * SECURITY UPDATE: Directory traversal - debian/patches/CVE-2020-11736.patch: do not follow external links when extracting files in src/fr-archive-libarchive.c. - CVE-2020-11736 -- <email address hidden> (Leonidas S. Barbosa) Mon, 27 Apr 2020 09:22:51 -0300

CVE-2020-11736

fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's

About - Send Feedback to @ubuntu_updates

Package "file-roller"

Links

Download "file-roller"

Other versions of "file-roller" in Focal

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

security

PPA updates