ansible/changelogs/fragments/win-unzip-check-extraction-path.yml at 2c294d0cbf6daf7fc629c71739bc5bf5830cb50d - cmueller/ansible - tilera Git

cmueller/ansible

Sam Doran d30c57ab22

win_unzip - normalize and compare paths to prevent path traversal (#67799 )

* Actually inspect the paths and prevent escape
* Add integration tests
* Generate zip files for use in integration test
* Adjust error message

2020-02-28 17:56:21 -05:00

4 lines

164 B

YAML

Raw Blame History

 bugfixes:
   - >
     **security issue** win_unzip - normalize paths in archive to ensure extracted
     files do not escape from the target directory (CVE-2020-1737)