Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Perl\-Archive\-Zip
(Perl\-Archive\-Zip_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-06-29 | CVE-2018-10860 | perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could use this flaw to write or overwrite arbitrary files in the context of the perl interpreter. | Ubuntu_linux, Debian_linux, Perl\-Archive\-Zip | 7.5 |