Joined: 12 May 2004
|Posted: Wed Jul 29, 2020 1:26 am Post subject: [ GLSA 202007-51 ] FileZilla
|Gentoo Linux Security Advisory
Title: FileZilla: Untrusted search path (GLSA 202007-51)
A vulnerability was found in FileZilla which might allow privilege
FileZilla is an open source FTP client.
Vulnerable: < 18.104.22.168
Unaffected: >= 22.214.171.124
Architectures: All supported architectures
It was discovered that FileZilla uses an untrusted search path.
An attacker could use a malicious binary to escalate privileges.
There is no known workaround at this time.
All FileZilla users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=net-ftp/filezilla-126.96.36.199"