REDHAT-BUG-2264106
First published: Tue Feb 13 2024(Updated: )
This vulnerability affects <a href="https://github.com/devfile/registry-support">https://github.com/devfile/registry-support</a> and more specifically as part of a decompress function where we were reading archived files from a .tar and writing them to a new location. It was reported to us that the cleaning function we were using to ensure the file paths could not escape the directory they were supposed to go to was not working properly. This allowed somebody to potentially intercept the .tar file as it was being downloaded by the client and replace it with one that contained relative file paths. These paths when read by the decompress function would escape the destination directory and potentially overwrite arbitrary files. The commit that contains the fix is here: <a href="https://github.com/devfile/registry-support/commit/0e44b9ca6d03fac4fc3f77d37656d56dc5defe0d">https://github.com/devfile/registry-support/commit/0e44b9ca6d03fac4fc3f77d37656d56dc5defe0d</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| devfile registry-support |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2024-1485
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/devfile
- canonical/devfile registry-support