Santiago Vila wrote:
> If you want to follow Bruno's suggestion that unzip is secure by default
> (which I would support), I guess it would not be a lot of work, because,
> once that there is already a new command line option for that, it would
> be just a matter of reversing its logic (i.e. ins
El 3/8/22 a las 5:04, Steven M. Schweda escribió:
Greetings. A long time ago we received this bug:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=314832
And a long time ago, I made some changes to improve things. Sadly,
all that work went into UnZip 6.1, none into 6.0, and we still hav
Package: unzip
Version: 6.0
Severity: normal
I still see this bug in version 6.0 (6.0-26ubuntu3, to be precise).
It's a security issue (because it allows other users on the same machine to
overwrite the extracted files, if they know the file names).
As such:
* It should be treated with severit
Package: unzip
Version: 5.52-3
Severity: wishlist
>From [man unzip]:
Dates, times and permissions of stored directories are not
restored except under Unix. (On Windows NT and successors,
timestamps are now restored.)
However, there doesn't seem to be any way to override thi
4 matches
Mail list logo
