A micropatch was released to fix a 19-year old arbitrary code execution vulnerability impacting 500 million users of the WinRAR compression tool and to keep ACE support after the app’s devs removed it when they patched the security issue. The software flaw, tracked using the CVE-2018-20250 identifier, allows potential attackers to completely take control of their targets’ system by tricking them into opening a maliciously crafted archive by making it possible “to create files in arbitrary folders when unpacking ACE archives”””
Source: https://www.bleepingcomputer.com/news/security/19-year-old-winrar-rce-vulnerability-gets-micropatch-which-keeps-ace-support/