search

apache / incubator-heron

Apache Heron (Incubating) is a realtime, distributed, fault-tolerant stream processing engine from Twitter
https://heron.apache.org/
Apache License 2.0
3.65k stars 599 forks source link

validate path before untar #3857

Closed huijunwu closed 1 year ago

huijunwu commented 1 year ago

This PR tries to validate untar path before actually untar the file.

reference https://security.snyk.io/research/zip-slip-vulnerability