CVE-2022-23522: Arbitrary file write in mindsdb when Extracting Tarballs retrieved from a remote location
(updated )
An unsafe extraction is being performed using shutil.unpack_archive() from a remotely retrieved tarball. Which may lead to the writing of the extracted files to an unintended location. This vulnerability is sometimes called a TarSlip or a ZipSlip variant.
References
- github.com/advisories/GHSA-7x45-phmr-9wqp
- github.com/mindsdb/mindsdb
- github.com/mindsdb/mindsdb/blob/69c76e727b8067f32b06ab83bb835a8c416c4f21/mindsdb/interfaces/storage/fs.py
- github.com/mindsdb/mindsdb/blob/69c76e727b8067f32b06ab83bb835a8c416c4f21/mindsdb/interfaces/storage/fs.py
- github.com/mindsdb/mindsdb/releases/tag/v22.11.4.3
- github.com/mindsdb/mindsdb/security/advisories/GHSA-7x45-phmr-9wqp
- github.com/pypa/advisory-database/tree/main/vulns/mindsdb/PYSEC-2023-26.yaml
- nvd.nist.gov/vuln/detail/CVE-2022-23522
Detect and mitigate CVE-2022-23522 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →