GNOME File Roller
By the Year
In 2020 there have been 1 vulnerability in GNOME File Roller with an average score of 3.9 out of ten. Last year File Roller had 1 security vulnerability published. At the current rates, it appears that the number of vulerabilities last year and this year may equal out. Last year, the average CVE base score was greater by 0.40
It may take a day or so for new File Roller vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.
Latest GNOME File Roller Security Vulnerabilities
fr-archive-libarchive.c in GNOME file-roller through 3.36.1
3.9 - Low
- April 13, 2020
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the intended extraction location.
An issue was discovered in GNOME file-roller before 3.29.91
4.3 - Medium
- September 21, 2019
An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction.