Bug#1010858: buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1

Hello, > Please go ahead; sorry for the delay. Thanks, I was uploaded to buster. -- YOKOTA

Processed: Re: Bug#1010858: buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1

Processing control commands: > tags -1 + confirmed Bug #1010858 [release.debian.org] buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1 Added tag(s) confirmed. -- 1010858: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010858 Debian Bug Tracking System Contact ow...@bugs.debian.org with pro

Bug#1010858: buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1

Control: tags -1 + confirmed On Thu, 2022-05-12 at 02:31 +0900, yokota wrote: > CVE-2022-30333 is directory traversal vulnerability. > It write to files during an extract operation on outside of > extraction > directory. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1010858: buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: yokota.h...@gmail.com [ Impact ] CVE-2022-30333 is directory traversal vulnerability. It write to files during an extract operation on outside of extraction directory.