3 matches found
CVE-2020-9479
When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may...
CVE-2020-9479
When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may...
CVE-2020-9479
CVE-2020-9479 affects Apache AsterixDB (unreleased builds) during loading of a UDF. A specially crafted ZIP can cause files to be placed outside the UDF deployment directory, indicating a directory traversal flaw in the UDF load process. Impact details are limited to the described commodity: no r...