2020-09-02 16:22:10
mitre
PUBLISHED
In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a write operation to a users home directory.