Fixed
Pinned fields
Click on the next to a field label to start pinning.
Details
Details
Assignee
Unassigned
UnassignedReporter
Michel Hartmann
Michel Hartmann(Deactivated)Priority
Created December 8, 2021 at 10:24 PM
Updated January 13, 2022 at 2:57 PM
Resolved January 13, 2022 at 2:57 PM
Extracting files from a malicious archive without validating that the destination file path is within the destination directory can cause files outside the destination directory to be overwritten.
See https://github.com/cip4/JDFLibJ/security/code-scanning/6?query=ref%3Arefs%2Fheads%2Fmaster for details on this.