Debian Security Update DSA-3915 ruby-mixlib-archive - security update

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,785
Reaction score
74
Credits
-1,257
It was discovered that ruby-mixlib-archive, a Chef Software's library used to handle various archive formats, was vulnerable to a directory traversal attack. This allowed attackers to overwrite arbitrary files by using a malicious tar archive containing ".." in its entries.

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8138-2: tar-rs vulnerability
Replies
0
Views
98
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8168-1: Rust vulnerability
Replies
0
Views
111
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8138-1: tar-rs vulnerability
Replies
0
Views
98
LinuxBot
LinuxBot
LinuxBot
Debian Security Update DSA-6180-1 ruby-rack - security update
Replies
0
Views
99
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8139-1: cargo-c vulnerability
Replies
0
Views
97
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,794 (members: 2, guests: 2,792)

Latest posts

Top