rpm package
suse/rubygem-archive-tar-minitar&distro=SUSE Linux Enterprise Module for Containers 12
pkg:rpm/suse/rubygem-archive-tar-minitar&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2012
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-10173 | Hig | 7.5 | < 0.5.2-7.3.65 | 0.5.2-7.3.65 | Feb 1, 2017 | Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry. |
- affected < 0.5.2-7.3.65fixed 0.5.2-7.3.65
Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.