Advisories ยป MGASA-2023-0216

Updated apache-ivy packages fix security vulnerability

Publication date: 07 Jul 2023
Modification date: 07 Jul 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-37865 , CVE-2022-37866

Description

Improper path allowed when extracting archive.(CVE-2022-37865)
Possible path traversal in download path (CVE-2022-37866)
                

References

SRPMS

8/core