Ubuntu Update For File-roller USN-1906-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Yorick Koster discovered that File Roller incorrectly sanitized paths. If a user were tricked into extracting a specially-crafted archive, an attacker could create and overwrite files outside of the extraction directory.

Affected

file-roller on Ubuntu 13.04 , Ubuntu 12.10

Severity

Classification

CVE CVE-2013-4668

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for dbus USN-2352-1
Ubuntu Update for cinder USN-2248-1
Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for apt-xapian-index USN-1955-1
Ubuntu Update for apache2 USN-1765-1

Ubuntu Update for file-roller USN-1906-1

Take action and discover your vulnerabilities