4 matches found
CVE-2025-32799
Conda-build contains commands and tools to build conda packages. Prior to version 25.4.0, the conda-build processing logic is vulnerable to path traversal Tarslip attacks due to improper sanitization of tar entry paths. Attackers can craft tar archives containing entries with directory traversal...
CVE-2025-32799
creationtimestamp| type| source ---|---|--- 2025-06-16 20:37:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18523 2025-06-16 23:23:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrr4rpgqct2o...
CVE-2025-32799 Conda-build Vulnerable to Path Traversal via Malicious Tar File
Conda-build contains commands and tools to build conda packages. Prior to version 25.4.0, the conda-build processing logic is vulnerable to path traversal Tarslip attacks due to improper sanitization of tar entry paths. Attackers can craft tar archives containing entries with directory traversal...
CVE-2025-32799 Conda-build Vulnerable to Path Traversal via Malicious Tar File
Conda-build contains commands and tools to build conda packages. Prior to version 25.4.0, the conda-build processing logic is vulnerable to path traversal Tarslip attacks due to improper sanitization of tar entry paths. Attackers can craft tar archives containing entries with directory traversal...