VYPR

Mixlib Archive

by Progress (organisation)

Source repositories

CVEs (1)

  • CVE-2017-1000026HigJul 17, 2017
    risk 0.49cvss 7.5epss 0.02

    Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries