It was discovered that the Archive::Zip module incorrectly handled certain inputs. An attacker could possibly use this to access sensitive information (CVE-2018-10860).
{ "section": "core" }