Advisories ยป MGASA-2021-0393

Updated php-pear packages fix security vulnerability

Publication date: 06 Aug 2021
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-32610

Description

Updated php-pear packages fix security vulnerability:

In Archive_Tar before 1.4.14, symlinks can refer to targets outside
of the extracted archive (CVE-2021-32610).
                

References

SRPMS

8/core