Project

General

Profile

Actions

Security #6119

closed

Security #6118: datasets: absolute path in rules can overwrite arbitrary files

datasets: absolute path in rules can overwrite arbitrary files (6.0.x backport)

Added by OISF Ticketbot over 1 year ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Label:
Git IDs:

aee1523b4591430ebed1ded0bb95508e6717a335

Severity:
HIGH
Disclosure Date:
Actions #1

Updated by Jason Ish over 1 year ago

  • Status changed from Assigned to In Progress
  • Assignee changed from Eric Leblond to Jason Ish
Actions #2

Updated by Victor Julien over 1 year ago

  • Severity changed from MODERATE to HIGH
Actions #3

Updated by Victor Julien over 1 year ago

  • Status changed from In Progress to Resolved
Actions #4

Updated by Jason Ish over 1 year ago

  • Git IDs updated (diff)
Actions #5

Updated by Jason Ish over 1 year ago

  • Status changed from Resolved to Closed
Actions #6

Updated by Jason Ish over 1 year ago

  • CVE set to 2023-35852
Actions #7

Updated by Victor Julien over 1 year ago

  • Private changed from Yes to No
Actions

Also available in: Atom PDF