NuytsTech Security

CVE-2017-5188

by ·

The bs_worker code in open build service before 20170320 followed relative symlinks, allowing reading of files outside of the package source directory during build, allowing leakage of private information.

Date published : 2018-03-01

https://bugzilla.suse.com/show_bug.cgi?id=1029824

https://github.com/openSUSE/open-build-service/commit/ba27c91351878bc297ec4baba0bd488a2f3b568d

Tags: