CVE-2018-12474
CVE-2018-12474 is addressed by updates to obs-service-tar_scm in openSUSE/openSUSE Open Build Service. The vulnerability arises from improper input/parameter handling: crafted service parameters could trigger unexpected behavior, enabling an attacker to access files outside the target repository ...