Updated arj packages fix security vulnerabilities
Publication date: 15 Apr 2015Modification date: 15 Apr 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-0556 , CVE-2015-0557 , CVE-2015-2782
Description
Updated arj package fixes security vulnerabilities: ARJ follows symlinks when unpacking stuff, even the symlinks that were created during the same unpack process, making it vulnerable to a directory traversal (CVE-2015-0556). To protect from directory traversals, ARJ strips leading slash from the path when unpacking, but this protection can be easily bypassed by adding more than one leading slash to the path (CVE-2015-0557). ARJ is vulnerable to a buffer overflow when processing a specially crafted arj file (CVE-2015-2782).
References
SRPMS
4/core
- arj-3.10.22-9.mga4