Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA-200710-23 Low: Star Directory Traversal Threat

gentoo
Calendar Grey October 22, 2007
Dist Gentoo Esm H88
The Star software on Gentoo contains a minor directory traversal vulnerability. Update it to mitigate risks of unauthorized file exposure.
A directory traversal vulnerability has been discovered in Star.

Summary

Gentoo Linux Security Advisory GLSA 200710-23 https://security.gentoo.org/ Severity: Low Title: Star: Directory traversal vulnerability Date: October 22, 2007 Bugs: #189690 ID: 200710-23

Synopsis ======= A directory traversal vulnerability has been discovered in Star.
Background ========= The Star program provides the ability to create and extract tar archives.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-arch/star < 1.5_alpha84 >= 1.5_alpha84
========== Robert Buchholz of the Gentoo Security team discovered a directory traversal vulnerability in the has_dotdot() function which does not identify //.. (slash slash dot dot) sequences in file names inside ta...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo directory traversal low severity star

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory gentoo directory traversal low severity star

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here