[
https://issues.apache.org/jira/browse/MWRAPPER-21?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Herve Boutemy moved MNG-6942 to MWRAPPER-21:
--------------------------------------------
Component/s: (was: Maven Wrapper)
Fix Version/s: 3.1.0
(was: 4.0.0)
(was: 4.0.0-alpha-1)
Key: MWRAPPER-21 (was: MNG-6942)
Affects Version/s: 0.5.6
(was: 4.0.0-alpha-1)
Project: Maven Wrapper (was: Maven)
> Arbitrary file write during archive extraction ("Zip Slip") in wrapper
> ----------------------------------------------------------------------
>
> Key: MWRAPPER-21
> URL: https://issues.apache.org/jira/browse/MWRAPPER-21
> Project: Maven Wrapper
> Issue Type: Bug
> Affects Versions: 0.5.6
> Reporter: Sylwester Lachiewicz
> Assignee: Robert Scholte
> Priority: Major
> Fix For: 3.1.0
>
>
> In Maven Wrapper Installer
> [https://github.com/apache/maven/blob/ef8c95eb397651e10f677763dfcd9c8cea7c27b0/maven-wrapper/src/main/java/org/apache/maven/wrapper/Installer.java]
>
> {code:java}
> ZipEntry entry = entries.nextElement();
> if ( entry.isDirectory() )
> {
> continue;
> }
> Path targetFile = dest.resolve( entry.getName() );
> // Unsanitized archive entry, which may contain '..', is used in a file
> system operation.
> // prevent Zip Slip
> if ( targetFile.startsWith( dest ) )
> {
> Files.createDirectories( targetFile.getParent() );
> Files.copy( zipFile.getInputStream( entry ), targetFile );
> }
> {code}
>
> Found via LGTM.com scan
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
