Überschreiben von Dateien in perl-Archive-Tar
ID: | FEDORA-2018-4e088b6d7c |
Distribution: | Fedora |
Plattformen: | Fedora 28 |
Datum: | Di, 19. Juni 2018, 09:25 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12015 |
Applikationen: | perl-Archive-Tar |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-4e088b6d7c 2018-06-18 16:16:37.138580 -------------------------------------------------------------------------------- Name : perl-Archive-Tar Product : Fedora 28 Version : 2.28 Release : 1.fc28 URL : https://metacpan.org/release/Archive-Tar Summary : A module for Perl manipulation of .tar files Description : Archive::Tar provides an object oriented mechanism for handling tar files. It provides class methods for quick and easy files handling while also allowing for the creation of tar file objects for custom manipulation. If you have the IO::Zlib module installed, Archive::Tar will also support compressed or gzipped tar files. -------------------------------------------------------------------------------- Update Information: This release fixes CVE-2018-12015 vulnerability (a directory traversal). It also fixes creating a file with a trailing white space on the file name. It also allows to archive absolute path names and it speeds up extracting large archives. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 8 2018 Petr Pisar |