CVE-2007-4829 (retired)

Priority
Description
Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and
earlier allows user-assisted remote attackers to overwrite arbitrary files
via a TAR archive that contains a file whose name is an absolute path or
has ".." sequences.
Notes
 kees> module 1.38 still doesn't fully fix the issue, but 1.39_01 does.
Assigned-to
kees
Package
Upstream:needs-triage
Package
Source: perl (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:41:30 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)