CVE-2020-24654

Publication date

2020-09-02 16:22:10

Family

mitre

State

PUBLISHED

Description

In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a write operation to a users home directory.