Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
eopkg has Path Traversal: '../filedir' vulnerability
Vulnerability Description
eopkg is a Solus package manager implemented in python3. In versions prior to 4.4.0, a malicious package could escape the directory set by `--destdir`. This requires the installation of a package from a malicious or compromised source. Files in such packages would not be installed in the path given by `--destdir`, but on a different location on the host. The issue has been fixed in v4.4.0. Users only installing packages from the Solus repositories are not affected.
CVSS Information
N/A
Vulnerability Type
路径遍历:’../filedir’
Vulnerability Title
eopkg 安全漏洞
Vulnerability Description
eopkg是GetSolus开源的一个包管理器。 eopkg 4.4.0之前版本存在安全漏洞,该漏洞源于恶意软件包可能逃逸--destdir设置的目录,导致文件被安装到主机上的其他位置。
CVSS Information
N/A
Vulnerability Type
N/A