| Revision Date: | 2018-08-16 | Version: | 1 |
| Title: | Security update for perl-Archive-Zip (Moderate) |
| Description: |
This update for perl-Archive-Zip fixes the following security issue:
- CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or overwrite arbitrary files in the context of the perl interpreter (bsc#1099497)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1099497
CVE-2018-10860
SUSE-SU-2018:2385-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 12 SP3
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed AND perl-Archive-Zip-1.34-3.3.1 is installed
|