Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-34363 - log back

CVE-2021-34363 edited at 10 Jun 2021 10:59:08

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Local

Type

-	Unknown
+	Arbitrary file overwrite

Description

+	The thefuck package before 3.31 allows path traversal that leads to arbitrary file deletion via the "undo archive operation" feature.

References

+	https://vuln.ryotak.me/advisories/48
+	https://github.com/nvbn/thefuck/commit/e343c577cd7da4d304b837d4a07ab4df1e023092

Notes

CVE-2021-34363 created at 10 Jun 2021 10:56:56