extplorer (2.1.0b6+dfsg.3-4+deb7u4build0.14.04.1) trusty-security;
urgency=medium
* fake sync from Debian
extplorer (2.1.0b6+dfsg.3-4+deb7u4) wheezy-security; urgency=high
* CVE-2016-4313: Fix archive traversal exploit in .zip extraction. The
unzip/extract feature allowed for path traversal as decompressed files can
be placed outside of the intended target directory if the archive content
contained "../" characters.
Date: 2016-08-20 00:08:13.301900+00:00
Changed-By: Steve Beattie <[email protected]>
https://launchpad.net/ubuntu/+source/extplorer/2.1.0b6+dfsg.3-4+deb7u4build0.14.04.1
Sorry, changesfile not available.
--
Trusty-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty-changes
