diffoscope -- arbitrary file write

2017-02-09T00:00:00
ID 077BBADF-F2F4-11E6-92A7-902B34361349
Type freebsd
Reporter FreeBSD
Modified 2017-02-16T00:00:00

Description

Ximin Luo reports:

[v67] introduced a security hole where diffoscope may write to arbitrary locations on disk depending on the contents of an untrusted archive.