漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
directory traversal for in-place extracts with untrusted v2 and v3 source packages with debian.tar
Vulnerability Description
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction can lead to directory traversal situations on specially crafted orig.tar and debian.tar tarballs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
dpkg 路径遍历漏洞
Vulnerability Description
dpkg是Debian的软件包管理工具。 dpkg 存在路径遍历漏洞,该漏洞源于目录遍历问题。以下产品和版本受到影响:1.21.8, 1.20.10, 1.19.8, 1.18.26。
CVSS Information
N/A
Vulnerability Type
N/A