Project

General

Profile

Actions
Copy link

Security #6119

closed
OT JI

Security #6118: datasets: absolute path in rules can overwrite arbitrary files

datasets: absolute path in rules can overwrite arbitrary files (6.0.x backport)

Security #6119: datasets: absolute path in rules can overwrite arbitrary files (6.0.x backport)

Added by OISF Ticketbot almost 3 years ago. Updated almost 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jason Ish
Target version:
6.0.13
Affected Versions:
Label:
CVE:
2023-35852
Git IDs:

aee1523b4591430ebed1ded0bb95508e6717a335

Severity:
HIGH
Disclosure Date:

JI Updated by Jason Ish almost 3 years ago Actions
Copy link
 #1

  • Status changed from Assigned to In Progress
  • Assignee changed from Eric Leblond to Jason Ish

VJ Updated by Victor Julien almost 3 years ago Actions
Copy link
 #2

  • Severity changed from MODERATE to HIGH

VJ Updated by Victor Julien almost 3 years ago Actions
Copy link
 #3

  • Status changed from In Progress to Resolved

JI Updated by Jason Ish almost 3 years ago Actions
Copy link
 #4

  • Git IDs updated (diff)

JI Updated by Jason Ish almost 3 years ago Actions
Copy link
 #5

  • Status changed from Resolved to Closed

JI Updated by Jason Ish almost 3 years ago Actions
Copy link
 #6

  • CVE set to 2023-35852

VJ Updated by Victor Julien almost 3 years ago Actions
Copy link
 #7

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom