Rubygem minitar allows attackers to overwrite arbitrary files during
archive extraction via a .. (dot dot) in an extracted filename.
Created rubygem-archive-tar-minitar tracking bugs for this issue:
Affects: fedora-all [bug 1417579]
Affects: epel-7 [bug 1417580]
This issue affects the versions of rubygem-archive-tar-minitar as shipped with Red Hat Satellite 6. Red Hat Product Security has rated this issue as having Moderate security impact. A future update will not address this issue as the software is planned to be removed in a future version of Satellite 6.