CVE-2015-2304

Priority
Description
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and
earlier allows remote attackers to write to arbitrary files via a full
pathname in an archive.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (3.1.2-11)
Ubuntu 14.04 ESM (Trusty Tahr):released (3.1.2-7ubuntu2.1)
Patches:
Upstream:https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
More Information

Updated: 2020-03-18 22:37:22 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)