CVE-2017-6512

Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.

Date published : 2017-06-01

http://www.securityfocus.com/bid/99180

http://cpansearch.perl.org/src/JKEENAN/File-Path-2.13/Changes