VYPR

RubyGems package

mixlib-archive

pkg:gem/mixlib-archive

Vulnerabilities (1)

  • CVE-2017-1000026HigJul 17, 2017
    affected < 0.4.0fixed 0.4.0

    Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries