CVE-2023-52138

Name of the Vulnerable Software and Affected Versions Engrampa versions prior to the version that includes commit 63d5dfa

Description The issue is related to a Path Traversal vulnerability in Engrampa, an archive manager for the MATE environment. This vulnerability can be leveraged to achieve full Remote Command Execution (RCE) on the target. When handling CPIO archives, Engrampa follows symlinks by default, and the Archiver does not check the symlink location, leading to arbitrary file writes to unintended locations. An attacker can craft a malicious cpio or ISO archive to achieve RCE on the target system.

Recommendations For versions prior to the version that includes commit 63d5dfa, update to a version that includes the fix commit 63d5dfa to resolve the issue. As a temporary workaround, consider disabling the extraction of CPIO archives or restricting the use of the Engrampa Archive manager until a patch is available. Avoid using Engrampa to extract archives from untrusted sources until the issue is resolved.