[ubuntu/xenial-security] extplorer 2.1.0b6+dfsg.3-4+deb7u4ubuntu0.16.04.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Mon Aug 22 16:31:50 UTC 2016
extplorer (2.1.0b6+dfsg.3-4+deb7u4ubuntu0.16.04.1) xenial-security; urgency=medium
* Security merge from Debian.
extplorer (2.1.0b6+dfsg.3-4+deb7u4) wheezy-security; urgency=high
* CVE-2016-4313: Fix archive traversal exploit in .zip extraction. The
unzip/extract feature allowed for path traversal as decompressed files can
be placed outside of the intended target directory if the archive content
contained "../" characters.
Date: 2016-08-20 00:17:12.934537+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/extplorer/2.1.0b6+dfsg.3-4+deb7u4ubuntu0.16.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list