Control: retitle -1 ppmd: CVE-2015-1199: directory traversal
Hi,
This has been assigned CVE-2015-1199 by MITRE.
Regards,
Salvatore
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Package: ppmd
Version: 10.1-5
Tags: security
ppmd is susceptible to directory traversal vulnerabilities. While
decompressing a file, it will happily use absolute and relative paths
taken from the input. This can be exploited by a malicious compressed
file to write files outside the current dir
2 matches
Mail list logo
