VYPR

source-to-image

by Red Hat

CVEs (1)

  • CVE-2018-1102HigApr 30, 2018
    risk 0.57cvss 8.8epss 0.02

    A flaw was found in source-to-image function as shipped with Openshift Enterprise 3.x. An improper path validation of tar files in ExtractTarStreamFromTarReader in tar/tar.go leads to privilege escalation.