[Bug 1775778] [NEW] freedink-dfarc can overwrite arbitrary files (CVE-2018-0496)

Fri, 08 Jun 2018 00:21:02 -0700 

*** This bug is a security vulnerability ***

Public security bug reported:

Hi,

freedink-dfarc is affected by CVE-2018-0496 which can overwrite
arbitrary files when a user extracts a game extension.

Please consider upgrading freedink-dfarc to v3.14 for all current releases, or 
apply the following patch, so end users are protected from this security issue:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=900920
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=900920;filename=freedink-dfarc_3.12-1%2Bdeb9u1.debdiff;msg=5

** Affects: freedink-dfarc (Ubuntu)
     Importance: Undecided
         Status: New

** Information type changed from Private Security to Public Security

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1775778

Title:
  freedink-dfarc can overwrite arbitrary files (CVE-2018-0496)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/freedink-dfarc/+bug/1775778/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to