Lucene search
SuseOPENSUSE-SU-2021:0390-1HistoryMar 06, 2021 - 12:00 a.m.
Security update for gnome-autoar (moderate)
2021-03-0600:00:00
lists.opensuse.org
15
0.001 Low
EPSS
Percentile
21.9%
An update that fixes one vulnerability is now available.
Description:
This update for gnome-autoar fixes the following issues:
- CVE-2020-36241: Skip problematic files that might be extracted outside
of the destination dir to prevent potential directory traversal
(bsc#1181930).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-390=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | i586 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.x86_64.rpm |
Related
debiancve
debiancve
CVE-2020-36241
2021-02-05 14:15:17
CVE-2021-28650
2021-03-17 06:15:14
cvelist
cvelist
CVE-2020-36241
2021-02-05 07:11:07
CVE-2021-28650
2021-03-17 05:51:33
openvas
openvas
Ubuntu: Security Advisory (USN-4733-1)
2021-02-12 00:00:00
openSUSE: Security Advisory for gnome-autoar (openSUSE-SU-2021:0390-1)
2021-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:0687-1)
2021-06-09 00:00:00
redhatcve
redhatcve
CVE-2020-36241
2021-02-05 19:21:53
CVE-2021-28650
2021-03-17 13:46:38
prion
prion
Directory traversal
2021-02-05 14:15:00
Directory traversal
2021-03-17 06:15:00
cve
cve
CVE-2020-36241
2021-02-05 14:15:17
CVE-2021-28650
2021-03-17 06:15:14
alpinelinux
alpinelinux
CVE-2020-36241
2021-02-05 14:15:17
CVE-2021-28650
2021-03-17 06:15:14
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : GNOME Autoar vulnerability (USN-4733-1)
2021-02-11 00:00:00
openSUSE Security Update : gnome-autoar (openSUSE-2021-390)
2021-03-08 00:00:00
SUSE SLED15 / SLES15 Security Update : gnome-autoar (SUSE-SU-2021:0687-1)
2021-03-03 00:00:00
ubuntucve
ubuntucve
CVE-2020-36241
2021-02-05 00:00:00
CVE-2021-28650
2021-03-17 00:00:00
nvd
nvd
CVE-2020-36241
2021-02-05 14:15:17
CVE-2021-28650
2021-03-17 06:15:14
osv
osv
gnome-autoar vulnerability
2021-02-11 12:46:24
CVE-2020-36241
2021-02-05 14:15:17
CVE-2021-28650
2021-03-17 06:15:14
mageia
mageia
Updated gnome-autoar packages fix security vulnerability
2021-03-04 19:53:32
ubuntu
ubuntu
GNOME Autoar vulnerability
2021-02-11 00:00:00
veracode
veracode
Directory Traversal
2021-04-22 06:29:07
fedora
fedora
[SECURITY] Fedora 34 Update: dconf-0.40.0-1.fc34
2021-03-20 00:21:33
[SECURITY] Fedora 34 Update: glib2-2.67.6-2.fc34
2021-03-20 00:21:34
[SECURITY] Fedora 34 Update: gnome-calendar-40~rc-1.fc34
2021-03-20 00:21:35
gentoo
gentoo
GNOME Autoar: User-assisted execution of arbitrary code
2021-05-26 00:00:00
almalinux
almalinux
Moderate: GNOME security, bug fix, and enhancement update
2021-11-09 09:15:15
oraclelinux
oraclelinux
GNOME security, bug fix, and enhancement update
2021-11-16 00:00:00
redhat
redhat
rocky
rocky
GNOME security, bug fix, and enhancement update
2021-11-09 09:15:15
ibm
ibm