projects / platform / upstream / libarchive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 52b5a62) | patch
[CVE-2023-30571]README: vulnerability on implicite directory creation 59/299959/1 accepted/tizen_8.0_base tizen_8.0_base accepted/tizen/8.0/base/20231014.104914 tizen_8.0_m2_release
authorPeter Kaestle <peter.kaestle@nokia.com>
Mon, 3 Apr 2023 11:35:35 +0000 (13:35 +0200)
committerJinWang An <jinwang.an@samsung.com>
Fri, 13 Oct 2023 01:29:23 +0000 (01:29 +0000)
commit34ac7e38feef9923419eb8278d9e0e45a425ef5d
treea0637d64216600acf866a46d007446623ceadabdtree | snapshot
parent52b5a62f46e6109c792f6346c9326a5a6ec41094commit | diff
[CVE-2023-30571]README: vulnerability on implicite directory creation

There's a race condition with the umask() execution in multi-threaded
use of the libarchive.
It's the users responsibility to mutex archive_write_disk_header()
call.

Change-Id: I50a9495680e101dada09cd4559782061c6efdb87
Signed-off-by: Peter Kaestle <peter.kaestle@nokia.com>
(cherry picked from commit 42915f0554e77564ea8d46546460ba0c48269487)
README.md diff | blob | history
Domain: System / Base;