[Bug 1203463] VUL-0: CVE-2022-42725: warpinator: upload paths can escape destination upload folder leading to remote code execution
20 Jan
2023
20 Jan
'23
13:13
https://bugzilla.suse.com/show_bug.cgi?id=1203463 https://bugzilla.suse.com/show_bug.cgi?id=1203463#c13 Matthias Gerstner <matthias.gerstner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS --- Comment #13 from Matthias Gerstner <matthias.gerstner@suse.com> --- A first look into the upstream commits looks promising. They seem to have something to improve the group code handling and also touched the file transmission logic again. I will look more closely into the current state next week -- You are receiving this mail because: You are on the CC list for the bug.
704
Age (days ago)
704
Last active (days ago)
0 comments
1 participants
participants (1)
-
bugzilla_noreply@suse.com