CVE-2011-5325

Priority
Description
Directory traversal vulnerability in the BusyBox implementation of tar
before 1.22.0 v5 allows remote attackers to point to files outside the
current working directory via a symlink.
Assigned-to
mdeslaur
Notes
mdeslaurbionic only contains first commit
adding the second commit to bionic introduced a regression in
debootstrep, see LP: #1737662
new third commit mostly reverses second commit
two new commits are now available that possibly fix further
symlink issues
More Information

Updated: 2020-09-09 20:35:05 UTC (commit b67d7d8b03f173f825cd706df5bd078bca500b0e)