Bug#993035: bullseye-pu: package sabnzbdplus/3.1.1+dfsg-2

To: Jeroen Ploemen <jcfp@debian.org>, 993035@bugs.debian.org
Subject: Bug#993035: bullseye-pu: package sabnzbdplus/3.1.1+dfsg-2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 04 Sep 2021 15:20:10 +0100
Message-id: <[🔎] f7624720b5dd79bde4601d46af5c6f0a61b68907.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 993035@bugs.debian.org
In-reply-to: <20210826173836.2165c153@vip.jcf.pm>
References: <20210826173836.2165c153@vip.jcf.pm> <20210826173836.2165c153@vip.jcf.pm>

Control: tags -1 + confirmed

On Thu, 2021-08-26 at 17:38 +0200, Jeroen Ploemen wrote:
> The sabnzbdplus package has a security vulnerability, allowing a
> directory escape in the renamer() function through malicious par2
> files.
> 
> An attacker can create new files anywhere the privileges of the
> sabnzbdplus process permit, but not overwrite or delete existing
> files.
> 

Please go ahead.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#992956: bullseye-pu: package modsecurity-crs/3.3.0-1
Next by Date: Processed: Re: Bug#993035: bullseye-pu: package sabnzbdplus/3.1.1+dfsg-2
Previous by thread: Bug#992956: bullseye-pu: package modsecurity-crs/3.3.0-1
Next by thread: Processed: Re: Bug#993035: bullseye-pu: package sabnzbdplus/3.1.1+dfsg-2
Index(es):
- Date
- Thread