oss-sec mailing list archives
cve request: miniunzip directory traversal
From: Michael Gilbert <mgilbert () debian org>
Date: Wed, 31 Dec 2014 16:44:42 -0500
Jakub Wilk discovered a directory traversal issue in the miniunzip tool [0], which is part of minizip [1]. Attached is a proposed solution. Please assign a CVE id. Best wishes, Mike [0] http://bugs.debian.org/774321 [1] http://www.winimage.com/zLibDll/minizip.html
Attachment:
traversal.patch
Description:
Current thread:
- cve request: miniunzip directory traversal Michael Gilbert (Dec 31)