Updated p7zip package fixes security vulnerabilityPublication date: 01 Jul 2015
Affected Mageia releases : 4 , 5
Alexander Cherepanov discovered that p7zip is susceptible to a directory traversal vulnerability. While extracting an archive, it will extract symlinks and then follow them if they are referenced in further entries. This can be exploited by a rogue archive to write files outside the current directory (CVE-2015-1038).