CVE-2015-1038

EPSS 3.2%

p7zip - security update

Published: 1/21/2015Modified: 4/28/2026

Description

p7zip 9.20.1 allows remote attackers to write to arbitrary files via a symlink attack in an archive.

Affected packages (3)

Debian/p7zipfrom 0, < 9.20.1~dfsg.1-4.2
Debian/p7zipfrom 0, < 9.04~dfsg.1-1+deb6u1
Debian/p7zipfrom 0, < 9.20.1~dfsg.1-4+deb7u1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-1038