6 matches found
Amazon Linux 2 : mono (ALASMONO-2023-001)
It is, therefore, affected by a vulnerability as referenced in the ALAS2MONO-2023-001 advisory. SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file...
Important: mono
Issue Overview: SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version...
CVE-2021-32840
SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...
CVE-2021-32840 Path Traversal in SharpZipLib
SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...
CVE-2021-32840
CVE-2021-32840 affects SharpZipLib (aka #ziplib). Before version 1.3.3, a TAR file entry "../evil.txt" could be extracted into the parent directory of a destination folder, enabling arbitrary file write and potentially code execution. The vulnerability is patched in version 1.3.3. In the provided...
CVE-2021-32840 Path Traversal in SharpZipLib
SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...