oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: gcab: directory traversal

From: Salvatore Bonaccorso <carnil () debian org>
Date: Sun, 4 Jan 2015 20:06:37 +0100
Hi

Jakub Wilk reported a directory traversal vulnerability due to cab not
filtering leading slashes from paths in CAB files.

Debian bug: https://bugs.debian.org/774580
Upstream bugreport: https://bugzilla.gnome.org/show_bug.cgi?id=742331

Could you assign as CVE for this issue?

Regards,
Salvatore
Previous By Date Next
Previous By Thread Next

Current thread: