-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
4.14.z, 4.15.z, 4.17.z, 4.16.z, 4.18.0
-
None
-
False
-
Error from snyk code test command:
✗ [Medium] Path Traversal Path: ignition-server/controllers/local_ignitionprovider.go, line 487 Info: Unsanitized input from file name flows into os.Open, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to open arbitrary files. ✗ [Medium] Path Traversal Path: ignition-server/controllers/local_ignitionprovider.go, line 693 Info: Unsanitized input from file name flows into os.Open, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to open arbitrary files.
- clones
-
OCPBUGS-41983 [SNYK] Unsanitized input from a CLI argument flows into os.WriteFile
- Closed
- is cloned by
-
OCPBUGS-41985 [SNYK] Unsanitized input from file name flows into os.Open (line 693)
- Closed