Loading...

XML

Word

Printable

Type: Bug
Resolution: Duplicate
Priority: Normal
Fix Version/s: None
Affects Version/s: 4.14.z, 4.15.z, 4.17.z, 4.16.z, 4.18.0
Component/s: HyperShift
Labels:
- no-qe
- snyk
- triaged

Regression:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Target Version:

4.18.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Error from snyk code test command:

 ✗ [Medium] Path Traversal
   Path: hack/tools/deployment/deployment-update.go, line 137
   Info: Unsanitized input from a CLI argument flows into os.WriteFile, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to write arbitrary files.

clones

OCPBUGS-41982 [SNYK] Unsanitized input from a CLI argument flows into os.ReadFile and os.WriteFile

New

is cloned by

OCPBUGS-41984 [SNYK] Unsanitized input from file name flows into os.Open

New

Assignee:: Alberto Garcia Lamela

Reporter:: Juan Manuel Parrilla Madrid

QA Contact:: Jie Zhao

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/09/16 9:14 AM

Updated:: 2024/09/16 9:21 AM

Resolved:: 2024/09/16 9:21 AM