PYSEC-2018-83

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/diffoscope/PYSEC-2018-83.yaml

JSON Data

https://api.test.osv.dev/v1/vulns/PYSEC-2018-83

Aliases

Published

2018-04-13T16:29:00Z

Modified

2023-11-01T04:47:18.467526Z

Summary

[none]

Details

diffoscope before 77 writes to arbitrary locations on disk based on the contents of an untrusted archive.

References

Affected packages

PyPI / diffoscope

Package

Name: diffoscope; View open source insights on deps.dev
Purl: pkg:pypi/diffoscope

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

77

Affected versions

Other

39

40

41

42

43

44

45

46

47

48

49

51

52

54

55

56

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/diffoscope/PYSEC-2018-83.yaml"