Security Advisory

CVE-2020-7669

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-01 13:55:21

Last updated 2024-09-16 17:34:29

Assigner snyk

State PUBLISHED

Description

This affects all versions of package github.com/u-root/u-root/pkg/tarutil. It is vulnerable to both leading and non-leading relative path traversal attacks in tar file extraction.

← Browse all CVEs View on cve.org ↗