{"id":24512,"date":"2017-07-28T17:03:21","date_gmt":"2017-07-28T09:03:21","guid":{"rendered":"https:\/\/www.deepin.org\/?p=24512"},"modified":"2017-09-05T14:03:47","modified_gmt":"2017-09-05T06:03:47","slug":"deepin-security-update-urgently-fixed-bad-taste-security-vulnerability-cve-2017-11421-in-gnome-files","status":"publish","type":"post","link":"https:\/\/www.deepin.org.cn\/en\/deepin-security-update-urgently-fixed-bad-taste-security-vulnerability-cve-2017-11421-in-gnome-files\/","title":{"rendered":"Deepin Security Update\u2014\u2014Urgently Fixed Bad Taste Security vulnerability CVE-2017-11421 in GNOME Files"},"content":{"rendered":"\"en\"<\/p>\n

\"en\"<\/p>\n

The security updates of Bad Taste (gnome-exe-thumbnailer).<\/p>\n

 <\/p>\n

Vulnerability Information<\/b><\/h2>\n

CVE-2017-11421<\/a> \u2014Security Updates<\/strong><\/strong><\/strong><\/strong><\/p>\n

Security database details:<\/p>\n

gnome-exe-thumbnailer before 0.9.5 is prone to a VBScript Injection when generating thumbnails for MSI files, aka the \"Bad Taste\" issue. There is a local attack if the victim uses the GNOME Files file manager, and navigates to a directory containing a .msi file with VBScript code in its filename.<\/p>\n

 <\/p>\n

Fixing Status<\/h2>\n

gnome-exe-thumbnailer security vulnerabilities have been fixed in deepin 15.4.1 updates\uff0820170727\uff09.<\/p>\n

We recommend that you upgrade the system to obtain the patches to fix the vulnerabilities.<\/p>\n

\"en_s\"","protected":false},"excerpt":{"rendered":"

The security updates of Bad Taste (gnome-exe-thumbnailer).   Vulnerability Information CVE-2017-11421 \u2014Security Updates Security database details: gnome-exe-thumbnailer before 0.9.5 is prone to a VBScript Injection when generating thumbnails for MSI files, aka the \"Bad Taste\" issue. There is a local attack if the victim uses the GNOME Files file manager, and navigates to a directory containing a .msi file with VBScript code in its filename.   Fixing Status gnome-exe-thumbnailer security vulnerabilities have been fixed in deepin 15.4.1 updates\uff0820170727\uff09. We recommend that you upgrade the system to obtain the patches to fix the vulnerabilities.<\/p>\n","protected":false},"author":141,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[75,93],"tags":[],"_links":{"self":[{"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/posts\/24512"}],"collection":[{"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/users\/141"}],"replies":[{"embeddable":true,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/comments?post=24512"}],"version-history":[{"count":15,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/posts\/24512\/revisions"}],"predecessor-version":[{"id":25408,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/posts\/24512\/revisions\/25408"}],"wp:attachment":[{"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/media?parent=24512"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/categories?post=24512"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.deepin.org.cn\/en\/wp-json\/wp\/v2\/tags?post=24512"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}