Directory traversal vulnerability in wkhtmltopdf through 0.12.5 allows remote attackers to read local files and disclose sensitive information via a crafted html file running with the default configurations. https://github.com/wkhtmltopdf/wkhtmltopdf/issues/4536 https://github.com/wkhtmltopdf/wkhtmltopdf/commit/2a5f25077895fb075812c0f599326f079a59d6cf
Created wkhtmltopdf tracking bugs for this issue: Affects: epel-all [bug 2118954] Affects: fedora-all [bug 2118953]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.