[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: CVE-2016-6232 / kdelibs4

> Looks like this is an issue if you try to extract a tar file that
> contains relative paths outside the archives root. Is this considered a
> security issue we need to address?

(Replying quickly here so apologies for the lack of context/references but
there was previous discussion on this topic around busybox/CVE-2011-5325)


     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk

Reply to: