A vulnerability, which was classified as critical, has been found in Phillip Lougher squashfs-Tools 4.5. This issue affects the function squashfs_opendir of the file unsquash-2.c of the component squashfs Filesystem Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Phillip Lougher squashfs-Tools 4.5 squashfs Filesystem unsquash-2.c squashfs_opendir pathname traversal
- Virtual Patching
- September 14, 2021
- 9:04 am
- Virtual Patching
- September 14, 2021
- 9:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely
CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD
Description Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and