Updated freedink-dfarc package fixes security vulnerability
Publication date: 17 Jun 2018Modification date: 17 Jun 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-0496
Description
Sylvain Beucler and Dan Walma discovered several directory traversal issues in DFArc (as well as in the RTsoft's Dink Smallwood HD / ProtonSDK version), allowing an attacker to overwrite arbitrary files on the user's system (CVE-2018-0496). This release fixes it, and brings translation updates.
References
SRPMS
6/core
- freedink-dfarc-3.14-1.mga6