Red Hat Security Advisory 2020-4820-01 - File Roller is an application for creating and viewing archives files, such as tar or zip files. Issues addressed include a traversal vulnerability.
f5fc3754b71a9d44d6c9bdb7235ab4ac6235f2f7351d801be34f13c1b93bccb7
Debian Linux Security Advisory 4537-1 - It was discovered that file-roller, an archive manager for GNOME, does not properly handle the extraction of archives with a single ./../ in a file path. An attacker able to provide a specially crafted archive for processing can take advantage of this flaw to overwrite files if a user is dragging a specific file or map to a location to extract to.
c761fea2f22421c1b95c0c1cfc7ff302b6dbc7e5b65e3251a0005b07cb3ef959
Ubuntu Security Notice 4139-1 - It was discovered that File Roller incorrectly handled certain TAR files. An attacker could possibly use this issue to overwrite sensitive files during extraction.
8a79210a95de71453196679469a5650d860d21dda2f26b399cba66d8dd43fb4e