[ubuntu/focal-security] atril 1.24.0-1ubuntu0.1 (Accepted)
Emilia Torino
emilia.torino at canonical.com
Wed Jun 5 20:27:09 UTC 2024
atril (1.24.0-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Path traversal and arbitrary file write via epub files
- debian/patches/CVE-2023-52076.patch: Test each file's resolved path
against the temporary directory before extracting.
- CVE-2023-52076
Date: 2024-06-05 14:05:17.616899+00:00
Changed-By: Octavio Galland <octavio.galland at canonical.com>
Signed-By: Emilia Torino <emilia.torino at canonical.com>
https://launchpad.net/ubuntu/+source/atril/1.24.0-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list