Search for packages
Package details: pkg:deb/debian/atril@1.26.0-2%2Bdeb12u2
purl pkg:deb/debian/atril@1.26.0-2%2Bdeb12u2
Tags Ghost
Next non-vulnerable version 1.26.0-2+deb12u3
Latest non-vulnerable version 1.26.0-2+deb12u3
Risk 3.9
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-ayxt-x1mc-aaas
Aliases:
CVE-2023-52076
Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A path traversal and arbitrary file write vulnerability exists in versions of Atril prior to 1.26.2. This vulnerability is capable of writing arbitrary files anywhere on the filesystem to which the user opening a crafted document has access. The only limitation is that this vulnerability cannot be exploited to overwrite existing files, but that doesn't stop an attacker from achieving Remote Command Execution on the target system. Version 1.26.2 of Atril contains a patch for this vulnerability.
1.26.0-2+deb12u3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2024-05-20T15:11:50.338720+00:00 Debian Importer Affected by VCID-ayxt-x1mc-aaas https://security-tracker.debian.org/tracker/data/json 34.0.0rc4