unADF: Remote code execution Multiple vulnerabilities have been found in unADF that may allow a remote attacker to execute arbitrary code. unadf 2018-04-22 2018-04-22 636388 remote 0.7.12-r1 0.7.12-r1

An unzip like for .ADF files.

Multiple vulnerabilities were discovered in unADF that can lead to remote code execution. Please review the CVE identifiers referenced below for details.

A remote attacker, by enticing a user to process a specially crafted file, could execute arbitrary code.

There is no known workaround at this time.

All unADF users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=app-arch/unadf-0.7.12-r1" CVE-2016-1243 CVE-2016-1244 b-man b-man