Back to bug 263261

Who When What Removed Added
Tomas Hoger 2007-08-29 13:34:27 UTC Whiteboard source=vendorsec,reported=20070812,public=20070824,impact=low
Lubomir Kundrak 2007-10-02 12:10:00 UTC Depends On 315281
Lubomir Kundrak 2007-10-02 12:10:05 UTC Depends On 315291
Jeremy Katz 2009-08-25 14:54:06 UTC CC katzj
Tomas Hoger 2010-01-03 19:10:59 UTC Link ID Debian BTS 440097
Vincent Danen 2010-12-22 22:25:48 UTC Status NEW CLOSED
CC vdanen
Resolution --- UPSTREAM
Last Closed 2010-12-22 17:25:48 UTC
Product Security DevOps Team 2019-09-29 12:20:49 UTC Whiteboard source=vendorsec,reported=20070812,public=20070824,impact=low
Guilherme de Almeida Suckevicz 2022-09-23 16:36:40 UTC Blocks 2129409
Matěj Cepl 2022-10-10 20:25:27 UTC CC mcepl
Guilherme de Almeida Suckevicz 2022-11-08 17:06:32 UTC Severity low medium
Summary CVE-2007-4559 python tarfile module directory traversal CVE-2007-4559 python: tarfile module directory traversal
Priority low medium
Guilherme de Almeida Suckevicz 2022-11-08 17:13:39 UTC CC adudiak, bdettelb, caswilli, cstratak, dffrench, dhalasz, drieden, fjansen, gzaronik, hhorak, ikanias, jary, jburrell, jkoehler, jorton, jwong, jwon, kaycoth, kshier, micjohns, ngough, psegedy, python-maint, rgodfrey, rravi, sthirugn, tmeszaro, tohughes, tsasak, vkrizan, vmugicag
Guilherme de Almeida Suckevicz 2022-11-08 17:25:28 UTC Depends On 2141078, 2141081, 2141085, 2141079, 2141077, 2141082, 2141086, 2141083, 2141080, 2141084
Guilherme de Almeida Suckevicz 2022-11-09 13:53:31 UTC Depends On 2141322, 2141319, 2141321, 2141320, 2141318, 2141317
Guilherme de Almeida Suckevicz 2022-11-09 13:56:54 UTC Depends On 2141325, 2141324, 2141323
Guilherme de Almeida Suckevicz 2022-11-09 13:57:43 UTC Depends On 2141326
Guilherme de Almeida Suckevicz 2022-11-09 13:58:13 UTC Depends On 2141328, 2141327
Guilherme de Almeida Suckevicz 2022-11-14 14:30:57 UTC Doc Text A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files.
TEJ RATHI 2023-01-24 12:41:23 UTC Resolution UPSTREAM ---
Status CLOSED NEW
CC agilley
Keywords Reopened
Severity medium urgent
Priority medium urgent
Priority urgent medium
Severity urgent medium
Petr Viktorin 2023-02-27 17:12:57 UTC CC pviktori
Petr Viktorin 2023-03-28 14:15:27 UTC Flags needinfo?(lkuprova)
CC lkuprova
Lenka Špačková 2023-03-28 15:14:46 UTC Flags needinfo?(lkuprova) needinfo?(pviktori)
Petr Viktorin 2023-03-28 15:28:24 UTC Flags needinfo?(pviktori)
Lenka Špačková 2023-03-30 15:54:42 UTC Flags needinfo?(pviktori)
Petr Viktorin 2023-03-31 16:14:30 UTC Flags needinfo?(pviktori)
Petr Viktorin 2023-04-03 14:09:35 UTC CC gsuckevi
Flags needinfo?(gsuckevi)
Tomas Orsava 2023-04-03 14:51:22 UTC CC torsava
Flags needinfo?(thoger)
Guilherme de Almeida Suckevicz 2023-04-03 16:50:36 UTC Flags needinfo?(gsuckevi)
Tomas Hoger 2023-04-08 20:26:32 UTC Flags needinfo?(thoger)
Petr Viktorin 2023-05-15 14:31:46 UTC Blocks 2203890
Petr Viktorin 2023-05-15 14:51:12 UTC Blocks 2203905
Red Hat Bugzilla 2023-05-15 18:09:25 UTC CC drieden
Petr Viktorin 2023-05-16 14:29:06 UTC Blocks 2207691
Petr Viktorin 2023-05-16 14:38:25 UTC Blocks 2207692
Petr Viktorin 2023-05-16 15:47:52 UTC Blocks 2207715
Petr Viktorin 2023-05-17 15:02:12 UTC Blocks 2207997
Derrick 2023-06-05 18:25:24 UTC CC derrick.roach.ctr
Petr Viktorin 2023-06-27 12:21:07 UTC Blocks 2217897
Petr Viktorin 2023-06-27 12:25:32 UTC Blocks 2217902
Petr Viktorin 2023-06-27 12:36:08 UTC Blocks 2217905
Petr Viktorin 2023-06-27 12:41:35 UTC Blocks 2217906
Guilherme de Almeida Suckevicz 2023-06-27 13:07:58 UTC Blocks 2217905, 2217906
Guilherme de Almeida Suckevicz 2023-06-27 13:08:54 UTC Depends On 2217917, 2217916
Charalampos Stratakis 2023-06-28 13:57:37 UTC Blocks 2218233
Charalampos Stratakis 2023-06-28 13:59:30 UTC Blocks 2218234
Charalampos Stratakis 2023-06-28 14:01:56 UTC Blocks 2218235
Charalampos Stratakis 2023-06-28 14:05:09 UTC Blocks 2218237
Charalampos Stratakis 2023-06-28 14:09:57 UTC Blocks 2218240
Charalampos Stratakis 2023-06-28 14:13:38 UTC Blocks 2218241
Charalampos Stratakis 2023-06-28 14:15:53 UTC Blocks 2218243
Charalampos Stratakis 2023-06-28 14:18:39 UTC Blocks 2218246
Charalampos Stratakis 2023-06-28 14:18:58 UTC Blocks 2218247
Charalampos Stratakis 2023-06-28 14:21:15 UTC Blocks 2218248
Charalampos Stratakis 2023-06-28 14:21:45 UTC Blocks 2218249
Charalampos Stratakis 2023-06-28 14:25:46 UTC Blocks 2218267
Charalampos Stratakis 2023-06-28 14:26:58 UTC Blocks 2218274
Charalampos Stratakis 2023-06-28 14:28:20 UTC Blocks 2218275
Charalampos Stratakis 2023-06-28 14:28:54 UTC Blocks 2218277
Petr Viktorin 2023-06-30 11:06:48 UTC Depends On 2218870
Petr Viktorin 2023-06-30 11:18:00 UTC Depends On 2218873
Petr Viktorin 2023-06-30 11:28:35 UTC Depends On 2218875
Petr Viktorin 2023-06-30 11:41:27 UTC Blocks 2218876
Petr Viktorin 2023-07-03 12:29:05 UTC Blocks 2219388
Charalampos Stratakis 2023-07-03 13:56:37 UTC Blocks 2219407
Charalampos Stratakis 2023-07-03 13:57:18 UTC Depends On 2219408
Red Hat Bugzilla 2023-07-07 08:28:00 UTC Assignee security-response-team nobody

Back to bug 263261