VYPR

rpm package

suse/rubygem-archive-tar-minitar&distro=SUSE Linux Enterprise Module for Containers 12

pkg:rpm/suse/rubygem-archive-tar-minitar&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2012

Vulnerabilities (1)

  • CVE-2016-10173HigFeb 1, 2017
    affected < 0.5.2-7.3.65fixed 0.5.2-7.3.65

    Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.