Red Hat Security Advisory: plexus-archiver security update
Advisory ID:       SLSA-2023:6886
Issue Date:        2023-11-13
CVE Numbers:       CVE-2023-37460
--

The Plexus project provides a full software stack for creating and executing software projects. Based on the Plexus container, the applications can utilise component-oriented programming to build modular, reusable components that can easily be assembled and reused. The plexus-archiver component provides functions to create and extract archives.

Security Fix(es):

* plexus-archiver: Arbitrary File Creation in AbstractUnArchiver (CVE-2023-37460)

---
This content is derived from https://access.redhat.com/errata/RHSA-2023:6886
--

SL7
  srpm
    plexus-archiver-0:2.4.2-6.el7_9.src
  noarch
    plexus-archiver-0:2.4.2-6.el7_9.noarch

- Scientific Linux Development Team

SciLinux: Important: plexus-archiver on SL7 srpm

plexus-archiver: Arbitrary File Creation in AbstractUnArchiver (CVE-2023-37460) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:6886 SL7 srpm plexus-arc...

Summary

Red Hat Security Advisory: plexus-archiver security update



Security Fixes

* plexus-archiver: Arbitrary File Creation in AbstractUnArchiver (CVE-2023-37460)
This content is derived from https://access.redhat.com/errata/RHSA-2023:6886
SL7 srpm plexus-archiver-0:2.4.2-6.el7_9.src noarch plexus-archiver-0:2.4.2-6.el7_9.noarch
- Scientific Linux Development Team

Severity
Issued Date: : 2023-11-13
CVE Numbers: CVE-2023-37460
The Plexus project provides a full software stack for creating and executing software projects. Based on the Plexus container, the applications can utilise component-oriented programming to build modular, reusable components that can easily be assembled and reused. The plexus-archiver component provides functions to create and extract archives.

Related News

News

Powered By

Footer Logo

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

Powered By

Footer Logo