Lucene search
+L

7 matches found

OSV
OSV
added 2026/06/30 3:16 p.m.3 views

DEBIAN-CVE-2026-4360

In the Tarfile.extract function, the filter parameter is not passed properly when extracting hardlinks. An affected system that extracts content from untrusted tar files could end up writing files with an unexpected uid/gid despite the user passing filter='data' to the extract function...

5.3CVSS5.8AI score0.00235EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/06/24 1:14 p.m.11 views

USN-8467-1: Perl vulnerabilities

It was discovered that Perl's Archive::Tar module incorrectly handled symlink and hardlink targets during extraction. An attacker could use this issue to read or overwrite arbitrary files outside the extraction directory. CVE-2026-42496 It was discovered that Perl had a heap buffer overflow when...

9.8CVSS6.3AI score0.0043EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-0484

Malware in sbrugna...

7.5CVSS8.5AI score0.02416EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-0483

Malware in sbrugna...

7.5CVSS7.5AI score0.02106EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.9 views

CVE-2018-20835

A vulnerability was found in tar-fs before 1.16.2. An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the...

7.5CVSS6.7AI score0.02106EPSS
Exploits1References1
Amazon
Amazon
added 2024/05/30 12:0 a.m.10 views

Important: git

Issue Overview: Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule's worktree but into a...

9CVSS7.4AI score0.25334EPSS
Exploits35
OSV
OSV
added 2019/08/07 9:38 a.m.4 views

SUSE-SU-2019:2078-1 Security update for nodejs4

This update for nodejs4 fixes the following issues: - CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290...

7.5CVSS7.5AI score0.02416EPSS
Exploits0References3
Rows per page
Query Builder