A path-traversal vulnerability in the emergency P2P checkpoint service allows
a network peer to write files outside the intended staging directory on the
victim host.
Reported to the Google OSS VRP; per OSS VRP policy the report is held until
a patch is merged upstream.
A fix is proposed in #3105.
A path-traversal vulnerability in the emergency P2P checkpoint service allows
a network peer to write files outside the intended staging directory on the
victim host.
Reported to the Google OSS VRP; per OSS VRP policy the report is held until
a patch is merged upstream.
A fix is proposed in #3105.