Security Advisory
CVE-2017-1000026
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Chef Softwares mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries