QwikSec

Security Database

CVE

CWE

Training

CVE-2021-40153

Published: Aug 27, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. The filename is not validated for traversal outside of the destination directory, and thus allows writing to locations outside of the destination.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/plougher/squashfs-tools/commit/79b5a555058eef4e1e7ff220c344d39f8cd09646

https://github.com/plougher/squashfs-tools/issues/72

https://bugs.launchpad.net/ubuntu/+source/squashfs-tools/+bug/1941790

FEDORA-2021-cdbd827c1e

vendor-advisory

[debian-lts-announce] 20210831 [SECURITY] [DLA 2752-1] squashfs-tools security update

mailing-list

vendor-advisory

FEDORA-2021-9fb6da134f

vendor-advisory

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.