[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE Request: Ark path traversal
From:       Jeff Mitchell <mitchell () kde ! org>
Date:       2011-07-26 21:21:00
Message-ID: 4E2F2FBC.4050505 () kde ! org
[Download RAW message or body]

On 7/26/2011 3:58 PM, Josh Bressers wrote:
> 
> 
> ----- Original Message -----
>> Hello,
>>
>> Ark contains a path traversal vulnerability allowing a
>> maliciously-crafted zip file to allow for an arbitrary file to be
>> displayed and, if the user has appropriate credentials, removed.
>>
>> Can we please get a CVE for this?
>>
> 
> Do you have a URL or some other public information about this flaw?

It's not public yet as we're currently working on a fix.

Thanks,
Jeff

[prev in list] [next in list] [prev in thread] [next in thread]