A use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `--no-clobber` is used together with `--remove-on-error`.
References
Link | Resource |
---|---|
https://hackerone.com/reports/1553598 | Exploit Third Party Advisory |
https://security.netapp.com/advisory/ntap-20220609-0009/ | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20220729-0004/ | Third Party Advisory |
https://www.oracle.com/security-alerts/cpujul2022.html | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2022-06-01T19:03:32
Updated: 2022-07-29T19:09:59
Reserved: 2022-03-23T00:00:00
Link: CVE-2022-27778
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-02T14:15:43.903
Modified: 2024-03-27T15:02:14.720
Link: CVE-2022-27778
JSON object: View
Redhat Information
No data.
CWE