CVE-2011-5325

Priority
Description
Directory traversal vulnerability in the BusyBox implementation of tar
before 1.22.0 v5 allows remote attackers to point to files outside the
current working directory via a symlink.
Assigned-to
mdeslaur
Notes
mdeslaurbionic only contains first commit
adding the second commit to bionic introduced a regression in
debootstrep, see LP: #1737662
new third commit mostly reverses second commit
two new commits are now available that possibly fix further
symlink issues
More Information

Updated: 2019-12-05 19:14:56 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)