Showing 1 - 3 of 3

CVE-2021-32610

Status Candidate

Overview

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

Red Hat Security Advisory 2022-7628-01: Posted Nov 8, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-7628-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Issues addressed include traversal and use-after-free vulnerabilities.; tags | advisory, web, php, vulnerability; systems | linux, redhat; advisories | CVE-2021-21707, CVE-2021-21708, CVE-2021-32610; SHA-256 | c5085c33c69a944a83481bcd51491bb584588fdd62e2fb35c3424bbef37bc4ef; Download | Favorite | View

Ubuntu Security Notice USN-5027-2: Posted Aug 5, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5027-2 - USN-5027-1 fixed a vulnerability in PEAR. This update provides the corresponding update for Ubuntu 16.04 ESM. It was discovered that PEAR incorrectly handled symbolic links in archives. A remote attacker could possibly use this issue to execute arbitrary code.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2021-32610; SHA-256 | df559f41a9861c424254beea668a542642e910e89039c2aafd40bde9e6061df4; Download | Favorite | View

Ubuntu Security Notice USN-5027-1: Posted Jul 30, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5027-1 - It was discovered that PEAR incorrectly handled symbolic links in archives. A remote attacker could possibly use this issue to execute arbitrary code.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2021-32610; SHA-256 | e8f9ded0ced617874263eb0c296a5b75636436070ea49ac10fb48402f22578d3; Download | Favorite | View

Page 1 of 1 Back 1 Next