CVE-2011-5325

Priority
Description
Directory traversal vulnerability in the BusyBox implementation of tar
before 1.22.0 v5 allows remote attackers to point to files outside the
current working directory via a symlink.
Assigned-to
mdeslaur
Notes
mdeslaurbionic only contains first commit
adding the second commit to bionic introduced a regression in
debootstrep, see LP: #1737662
new third commit mostly reverses second commit
two new commits are now available that possibly fix further
symlink issues
More Information

Updated: 2020-03-18 20:14:59 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)