ansible/changelogs/fragments/win-unzip-check-extraction-path.yml

security_fixes:
  - >
    **security issue** win_unzip - normalize paths in archive to ensure extracted
    files do not escape from the target directory (CVE-2020-1737)
add changelog categories, update CVE fragments to use security_fix category (#69968) * use security_fix category in changelogs for CVEs * these fragments do not say CVE but are security fixes Co-authored-by: Alicia Cozine <acozine@users.noreply.github.com> 2020-06-11 19:24:01 +02:00			`security_fixes:`
win_unzip - normalize and compare paths to prevent path traversal (#67799) * Actually inspect the paths and prevent escape * Add integration tests * Generate zip files for use in integration test * Adjust error message 2020-02-28 23:56:21 +01:00			`- >`
			`security issue win_unzip - normalize paths in archive to ensure extracted`
			`files do not escape from the target directory (CVE-2020-1737)`