{"published":"2018-06-27 18:10:37","author_name":"knqyf263","provider_url":"https://hatena.blog","blog_url":"https://knqyf263.hatenablog.com/","height":"190","author_url":"https://blog.hatena.ne.jp/knqyf263/","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fknqyf263.hatenablog.com%2Fentry%2F2018%2F06%2F27%2F181037\" title=\"Perl\u306eArchive::Tar\u306e\u8106\u5f31\u6027\uff08CVE-2018-12015\uff09\u306b\u3064\u3044\u3066\u8abf\u3079\u3066\u307f\u305f - knqyf263&#39;s blog\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","version":"1.0","image_url":null,"provider_name":"Hatena Blog","type":"rich","title":"Perl\u306eArchive::Tar\u306e\u8106\u5f31\u6027\uff08CVE-2018-12015\uff09\u306b\u3064\u3044\u3066\u8abf\u3079\u3066\u307f\u305f","description":"\u6982\u8981 \u5c11\u3057\u524d\u3067\u3059\u304c\u3001Perl\u306eArchive::Tar\u30e2\u30b8\u30e5\u30fc\u30eb\u306b\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u306e\u8106\u5f31\u6027\u304c\u898b\u3064\u304b\u308a\u307e\u3057\u305f\uff08CVE-2018-12015\uff09\u3002 oss-sec: Perl: CVE-2018-12015: Archive::Tar: directory traversal vulnerability \u3053\u306e\u8106\u5f31\u6027\u306fRedHat\u306e\u30da\u30fc\u30b8\u3067CVSS\u30b9\u30b3\u30a25.4\u3068\u304b\u306a\u306e\u3067\u7279\u5225\u9ad8\u3044\u308f\u3051\u3067\u306f\u306a\u304f\u4e16\u9593\u7684\u306b\u3082\u5168\u304f\u8a71\u984c\u306b\u306a\u3063\u3066\u3044\u306a\u3044\u306e\u3067\u3059\u304c\u3001\u3069\u3046\u3084\u3063\u3066\u3053\u306e\u8106\u5f31\u6027\u304c\u8d77\u304d\u308b\u306e\u304b\u6c17\u306b\u306a\u3063\u3066\u3057\u307e\u3063\u305f\u306e\u3067\u8abf\u3079\u307e\u3057\u305f\u3002 \uff03Zip Slip\u306e\u65b9\u3058\u3083\u306a\u304f\u3066\u5168\u304f\u8a71\u984c\u306b\u306a\u3063\u3066\u306a\u3044\u3084\u3064\u3067\u3059\u3002 \u5b9f\u9a13 \u3068\u308a\u3042\u3048\u305a\u8a66\u3057\u3066\u307f\u307e\u3059\u3002\u4e0a\u306e\u2026","categories":[],"width":"100%","blog_title":"knqyf263's blog","url":"https://knqyf263.hatenablog.com/entry/2018/06/27/181037"}