CLSA-2026-1777454474

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1777454474.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2026-1777454474
Upstream
Published
2026-04-29T09:21:19Z
Modified
2026-05-27T11:18:12.665867016Z
Summary
plexus-utils: Fix of CVE-2025-67030
Details
  • CVE-2025-67030: fix Zip Slip / directory traversal in Expand.extractFile (canonical path check)
References

Affected packages

TuxCare:AlmaLinux:9.6 / plexus-utils

Package

Name
plexus-utils
Purl
pkg:rpm/tuxcare/plexus-utils?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.3.0-13.el9.tuxcare.els1

Database specific

source
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1777454474.json"

TuxCare:AlmaLinux:9.6 / plexus-utils-javadoc

Package

Name
plexus-utils-javadoc
Purl
pkg:rpm/tuxcare/plexus-utils-javadoc?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.3.0-13.el9.tuxcare.els1

Database specific

source
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1777454474.json"