[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#802702: CVE-2011-5325: busybox: Directory traversal via crafted tar file which contains a symlink pointing outside of the current directory

On Wed, 2016-06-29 at 10:39 +0200, Petter Reinholdtsen wrote:
> [Chris Lamb]
> > IIRC it was deemed to be low-priority from an LTS point of view so/and
> > I could not justify spending more time on it then. Happy to look again
> > if there is a more urgent requirement.
> Right.  It is still unsolved in stable, testing, unstable and upstream,
> and the second oldest open CVE on my stable laptop (the oldest is in
> ruby, and pending a stable update), so I would like to see it fixed to
> reduce the number of known security problems on my machine. :)
> Can not say much about the priority or urgency related to other issues,
> though. :)
> I've poked upstream too, and hope some solution will materialise.

This was fixed in GNU tar some years ago, and I was able to implement a
similar fix in p7zip (thought that was simpler because p7zip doesn't
support hard links).

busybox tar should do basically the same as GNU tar, though without
copying code since they are unfortunately not licence-compatible.



Ben Hutchings
Make three consecutive correct guesses and you will be considered an

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: