Bug 2359334 (CVE-2025-3445)
| Summary: | CVE-2025-3445 mholt/archiver: A Path Traversal "Zip Slip" vulnerability in mholt/archiver | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | dhanak, dsimansk, kingland, kverlaen, matzew, mnovotny, pierdipi, rhuss, sausingh, skontopo |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A Path Traversal "Zip Slip" vulnerability was found in the mholt/archiver in Go. This vulnerability allows using a crafted ZIP file containing path traversal symlinks to create or overwrite files with the user's privileges or application utilizing the library. When using the archiver, the Unarchive functionality with ZIP files, archiver.Unarchive(zipFile, outputDir), allows a crafted ZIP file to be extracted, where it writes files to the affected system with the same privileges as the application executing this vulnerable functionality. Consequently, sensitive files may be overwritten, potentially leading to privilege escalation, code execution, and other severe outcomes in some cases.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2359386, 2359387, 2359388, 2359389, 2359390, 2359391, 2359392, 2359393, 2359394, 2359395, 2359396 | ||
| Bug Blocks: | |||
|
Description
OSIDB Bzimport
2025-04-13 23:01:06 UTC
|