[Bug 1893465] Re: KDE Project Security Advisory: Ark: maliciously crafted TAR archive with symlinks can install files outside the extraction directory.
Eduardo Barretto
1893465 at bugs.launchpad.net
Fri Aug 28 19:40:17 UTC 2020
Thanks for taking the time to report this bug and helping to make Ubuntu better.
That CVE apparently didn't hit our tracker so far, as soon as it does I'll update the status of Ubuntu Focal and thanks for providing the debdiff.
Can you confirm that previous releases of Ubuntu are not affected by the same issue?
** Changed in: ark (Ubuntu)
Assignee: (unassigned) => Eduardo Barretto (ebarretto)
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to ark in Ubuntu.
https://bugs.launchpad.net/bugs/1893465
Title:
KDE Project Security Advisory: Ark: maliciously crafted TAR archive
with symlinks can install files outside the extraction directory.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ark/+bug/1893465/+subscriptions
More information about the kubuntu-bugs
mailing list