CVE-2021-32610

Опубликовано: 30 июл. 2021

Источник: redhat

CVSS3: 7.4

Описание

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	php-pear	Out of support scope
Red Hat Enterprise Linux 7	php-pear	Out of support scope
Red Hat Enterprise Linux 8	php:7.3/php-pear	Will not fix
Red Hat Enterprise Linux 9	php-pear	Not affected
Red Hat Software Collections	rh-php73-php-pear	Will not fix
Red Hat Enterprise Linux 8	php	Fixed	RHSA-2022:7628	08.11.2022

Показывать по

Статус:

Moderate

Дефект:

CWE-22

7.4 High

CVSS3

CVE-2021-32610

CVSS3: 7.1

ubuntu

почти 4 года назад

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

CVE-2021-32610

CVSS3: 7.1

nvd

почти 4 года назад

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

CVE-2021-32610

CVSS3: 7.1

debian

почти 4 года назад

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of ...

SUSE-SU-2022:3198-2

suse-cvrf

больше 2 лет назад

Security update for php8-pear

SUSE-SU-2022:3198-1

suse-cvrf

почти 3 года назад

Security update for php8-pear

7.4 High

CVSS3