Vulnerability Report: GO-2023-1640
- CVE-2023-28105, GHSA-5g39-ppwg-6xx8
- Affects: github.com/dablelv/go-huge-util
- Published: Aug 23, 2023
Path traversal when unzipping files in github.com/dablelv/go-huge-util
For detailed information about this vulnerability, visit https://github.com/dablelv/go-huge-util/security/advisories/GHSA-5g39-ppwg-6xx8.
Affected Packages
-
PathVersionsSymbols
-
before v0.0.34
Aliases
References
- https://github.com/dablelv/go-huge-util/security/advisories/GHSA-5g39-ppwg-6xx8
- https://github.com/dablelv/go-huge-util/commit/0e308b0fac8973e6fa251b0ab095cdc5c1c0956b
- https://vuln.go.dev/ID/GO-2023-1640.json
Credits
- @cokeBeer
Feedback
See anything missing or incorrect?
Suggest an edit to this report.