Mariusz Felisiak
|
21e7622dec
|
[2.2.x] Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract().
Thanks Florian Apolloner, Shai Berger, and Simon Charette for reviews.
Thanks Wang Baohua for the report.
Backport of 05413afa8c from master.
|
2021-02-01 09:14:54 +01:00 |