CVE-2015-0557

Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-0556 Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive A remote attacker could use this flaw to perform ...

Debian Bug report logs - #774434 arj: CVE-2015-0556: symlink directory traversal Package: arj; Maintainer for arj is Guillem Jover <guillem@debianorg>; Source for arj is src:arj (PTS, buildd, popcon) Reported by: Jakub Wilk <jwilk@debianorg> Date: Fri, 2 Jan 2015 17:57:02 UTC Severity: normal Tags: security Foun ...

Debian Bug report logs - #774015 arj: CVE-2015-2782: free(): invalid pointer Package: arj; Maintainer for arj is Guillem Jover <guillem@debianorg>; Source for arj is src:arj (PTS, buildd, popcon) Reported by: Jakub Wilk <jwilk@debianorg> Date: Sat, 27 Dec 2014 11:57:01 UTC Severity: important Tags: security Found ...

Debian Bug report logs - #774435 arj: CVE-2015-0557: directory traversal via //multiple/leading/slash Package: arj; Maintainer for arj is Guillem Jover <guillem@debianorg>; Source for arj is src:arj (PTS, buildd, popcon) Reported by: Jakub Wilk <jwilk@debianorg> Date: Fri, 2 Jan 2015 17:57:07 UTC Severity: normal ...