Back to bug 2036051
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2021-12-29 13:43:16 UTC | Blocks | 2036052 | |
| Jan Werner | 2022-01-20 21:21:16 UTC | Depends On | 2043241 | |
| Borja Tarraso | 2022-06-01 07:01:59 UTC | Doc Text | A flaw was found in Iris Web Framework where UploadFormFiles method unsafely handles file names during upload. An attacker can take advantage writing in arbitrary locations outside of the designated target folder. | |
| Fixed In Version | iris-12.2.0-alpha8 | |||
| RaTasha Tillery-Smith | 2022-06-01 13:39:37 UTC | Doc Text | A flaw was found in Iris Web Framework where UploadFormFiles method unsafely handles file names during upload. An attacker can take advantage writing in arbitrary locations outside of the designated target folder. | A flaw was found in the Iris Web Framework, where the UploadFormFiles method unsafely handles file names during upload. This flaw allows an attacker to write in arbitrary locations outside the designated target folder. |
| Red Hat Bugzilla | 2023-07-07 08:30:51 UTC | Assignee | security-response-team | nobody |
Back to bug 2036051