blob: 2691849346f5e31a3d5907d825c0f71122168f37 [file] [log] [blame]
module = "github.com/yi-ge/unzip"
description = """
Malicious Zip archives can be crafted that contain relative file paths,
such that arbitary files outside of the target directory may be overwritten.
"""
symbols = ["Unzip.Extract"]
[[versions]]
fixed = "v1.0.3-0.20200308084313-2adbaa4891b9"
[links]
commit = "https://github.com/yi-ge/unzip/commit/2adbaa4891b9690853ef10216189189f5ad7dc73"
pr = "https://github.com/yi-ge/unzip/pull/1"
context = ["https://snyk.io/research/zip-slip-vulnerability"]