Back to bug 263261
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Tomas Hoger | 2007-08-29 13:34:27 UTC | Whiteboard | source=vendorsec,reported=20070812,public=20070824,impact=low | |
| Lubomir Kundrak | 2007-10-02 12:10:00 UTC | Depends On | 315281 | |
| Lubomir Kundrak | 2007-10-02 12:10:05 UTC | Depends On | 315291 | |
| Jeremy Katz | 2009-08-25 14:54:06 UTC | CC | katzj | |
| Tomas Hoger | 2010-01-03 19:10:59 UTC | Link ID | Debian BTS 440097 | |
| Vincent Danen | 2010-12-22 22:25:48 UTC | Status | NEW | CLOSED |
| CC | vdanen | |||
| Resolution | --- | UPSTREAM | ||
| Last Closed | 2010-12-22 17:25:48 UTC | |||
| Product Security DevOps Team | 2019-09-29 12:20:49 UTC | Whiteboard | source=vendorsec,reported=20070812,public=20070824,impact=low | |
| Guilherme de Almeida Suckevicz | 2022-09-23 16:36:40 UTC | Blocks | 2129409 | |
| Matěj Cepl | 2022-10-10 20:25:27 UTC | CC | mcepl | |
| Guilherme de Almeida Suckevicz | 2022-11-08 17:06:32 UTC | Severity | low | medium |
| Summary | CVE-2007-4559 python tarfile module directory traversal | CVE-2007-4559 python: tarfile module directory traversal | ||
| Priority | low | medium | ||
| Guilherme de Almeida Suckevicz | 2022-11-08 17:13:39 UTC | CC | adudiak, bdettelb, caswilli, cstratak, dffrench, dhalasz, drieden, fjansen, gzaronik, hhorak, ikanias, jary, jburrell, jkoehler, jorton, jwong, jwon, kaycoth, kshier, micjohns, ngough, psegedy, python-maint, rgodfrey, rravi, sthirugn, tmeszaro, tohughes, tsasak, vkrizan, vmugicag | |
| Guilherme de Almeida Suckevicz | 2022-11-08 17:25:28 UTC | Depends On | 2141078, 2141081, 2141085, 2141079, 2141077, 2141082, 2141086, 2141083, 2141080, 2141084 | |
| Guilherme de Almeida Suckevicz | 2022-11-09 13:53:31 UTC | Depends On | 2141322, 2141319, 2141321, 2141320, 2141318, 2141317 | |
| Guilherme de Almeida Suckevicz | 2022-11-09 13:56:54 UTC | Depends On | 2141325, 2141324, 2141323 | |
| Guilherme de Almeida Suckevicz | 2022-11-09 13:57:43 UTC | Depends On | 2141326 | |
| Guilherme de Almeida Suckevicz | 2022-11-09 13:58:13 UTC | Depends On | 2141328, 2141327 | |
| Guilherme de Almeida Suckevicz | 2022-11-14 14:30:57 UTC | Doc Text | A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files. | |
| TEJ RATHI | 2023-01-24 12:41:23 UTC | Resolution | UPSTREAM | --- |
| Status | CLOSED | NEW | ||
| CC | agilley | |||
| Keywords | Reopened | |||
| Severity | medium | urgent | ||
| Priority | medium | urgent | ||
| Priority | urgent | medium | ||
| Severity | urgent | medium | ||
| Petr Viktorin | 2023-02-27 17:12:57 UTC | CC | pviktori | |
| Petr Viktorin | 2023-03-28 14:15:27 UTC | Flags | needinfo?(lkuprova) | |
| CC | lkuprova | |||
| Lenka Špačková | 2023-03-28 15:14:46 UTC | Flags | needinfo?(lkuprova) | needinfo?(pviktori) |
| Petr Viktorin | 2023-03-28 15:28:24 UTC | Flags | needinfo?(pviktori) | |
| Lenka Špačková | 2023-03-30 15:54:42 UTC | Flags | needinfo?(pviktori) | |
| Petr Viktorin | 2023-03-31 16:14:30 UTC | Flags | needinfo?(pviktori) | |
| Petr Viktorin | 2023-04-03 14:09:35 UTC | CC | gsuckevi | |
| Flags | needinfo?(gsuckevi) | |||
| Tomas Orsava | 2023-04-03 14:51:22 UTC | CC | torsava | |
| Flags | needinfo?(thoger) | |||
| Guilherme de Almeida Suckevicz | 2023-04-03 16:50:36 UTC | Flags | needinfo?(gsuckevi) | |
| Tomas Hoger | 2023-04-08 20:26:32 UTC | Flags | needinfo?(thoger) | |
| Petr Viktorin | 2023-05-15 14:31:46 UTC | Blocks | 2203890 | |
| Petr Viktorin | 2023-05-15 14:51:12 UTC | Blocks | 2203905 | |
| Red Hat Bugzilla | 2023-05-15 18:09:25 UTC | CC | drieden | |
| Petr Viktorin | 2023-05-16 14:29:06 UTC | Blocks | 2207691 | |
| Petr Viktorin | 2023-05-16 14:38:25 UTC | Blocks | 2207692 | |
| Petr Viktorin | 2023-05-16 15:47:52 UTC | Blocks | 2207715 | |
| Petr Viktorin | 2023-05-17 15:02:12 UTC | Blocks | 2207997 | |
| Derrick | 2023-06-05 18:25:24 UTC | CC | derrick.roach.ctr | |
| Petr Viktorin | 2023-06-27 12:21:07 UTC | Blocks | 2217897 | |
| Petr Viktorin | 2023-06-27 12:25:32 UTC | Blocks | 2217902 | |
| Petr Viktorin | 2023-06-27 12:36:08 UTC | Blocks | 2217905 | |
| Petr Viktorin | 2023-06-27 12:41:35 UTC | Blocks | 2217906 | |
| Guilherme de Almeida Suckevicz | 2023-06-27 13:07:58 UTC | Blocks | 2217905, 2217906 | |
| Guilherme de Almeida Suckevicz | 2023-06-27 13:08:54 UTC | Depends On | 2217917, 2217916 | |
| Charalampos Stratakis | 2023-06-28 13:57:37 UTC | Blocks | 2218233 | |
| Charalampos Stratakis | 2023-06-28 13:59:30 UTC | Blocks | 2218234 | |
| Charalampos Stratakis | 2023-06-28 14:01:56 UTC | Blocks | 2218235 | |
| Charalampos Stratakis | 2023-06-28 14:05:09 UTC | Blocks | 2218237 | |
| Charalampos Stratakis | 2023-06-28 14:09:57 UTC | Blocks | 2218240 | |
| Charalampos Stratakis | 2023-06-28 14:13:38 UTC | Blocks | 2218241 | |
| Charalampos Stratakis | 2023-06-28 14:15:53 UTC | Blocks | 2218243 | |
| Charalampos Stratakis | 2023-06-28 14:18:39 UTC | Blocks | 2218246 | |
| Charalampos Stratakis | 2023-06-28 14:18:58 UTC | Blocks | 2218247 | |
| Charalampos Stratakis | 2023-06-28 14:21:15 UTC | Blocks | 2218248 | |
| Charalampos Stratakis | 2023-06-28 14:21:45 UTC | Blocks | 2218249 | |
| Charalampos Stratakis | 2023-06-28 14:25:46 UTC | Blocks | 2218267 | |
| Charalampos Stratakis | 2023-06-28 14:26:58 UTC | Blocks | 2218274 | |
| Charalampos Stratakis | 2023-06-28 14:28:20 UTC | Blocks | 2218275 | |
| Charalampos Stratakis | 2023-06-28 14:28:54 UTC | Blocks | 2218277 | |
| Petr Viktorin | 2023-06-30 11:06:48 UTC | Depends On | 2218870 | |
| Petr Viktorin | 2023-06-30 11:18:00 UTC | Depends On | 2218873 | |
| Petr Viktorin | 2023-06-30 11:28:35 UTC | Depends On | 2218875 | |
| Petr Viktorin | 2023-06-30 11:41:27 UTC | Blocks | 2218876 | |
| Petr Viktorin | 2023-07-03 12:29:05 UTC | Blocks | 2219388 | |
| Charalampos Stratakis | 2023-07-03 13:56:37 UTC | Blocks | 2219407 | |
| Charalampos Stratakis | 2023-07-03 13:57:18 UTC | Depends On | 2219408 | |
| Red Hat Bugzilla | 2023-07-07 08:28:00 UTC | Assignee | security-response-team | nobody |
Back to bug 263261