{"affected":[{"ecosystem_specific":{"binaries":[{"karchive-devel":"5.20.0-6.1","libKF5Archive5":"5.20.0-6.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12 SP1","name":"karchive","purl":"pkg:rpm/suse/karchive&distro=SUSE%20Package%20Hub%2012%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.20.0-6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for karchive fixes the following issues:\n\n- CVE-2016-6232: A remote attacker could have been able to overwrite arbitrary files when tricking the user into downloading KDE extras such as wallpapers or Plasma Applets (boo#989698)\n","id":"openSUSE-SU-2016:1884-1","modified":"2016-07-27T13:24:09Z","published":"2016-07-27T13:24:09Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NZMZYSWWUJMETFD7ZN3B4UJAV37BORYT/#NZMZYSWWUJMETFD7ZN3B4UJAV37BORYT"},{"type":"REPORT","url":"https://bugzilla.suse.com/989698"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-6232"}],"related":["CVE-2016-6232"],"summary":"Security update for karchive","upstream":["CVE-2016-6232"]}