CVE-2023-30620: mindsdb arbitrary file write when extracting a remotely retrieved Tarball
(updated )
An unsafe extraction is being performed using tarfile.extractall()
from a remotely retrieved tarball. Which may lead to the writing of the extracted files to an unintended location. Sometimes, the vulnerability is called a TarSlip or a ZipSlip variant.
References
- github.com/advisories/GHSA-2g5w-29q9-w6hx
- github.com/mindsdb/mindsdb
- github.com/mindsdb/mindsdb/blob/afedd37c16e579b6dc075b0814e42d0505ccdc07/mindsdb/api/http/namespaces/file.py
- github.com/mindsdb/mindsdb/commit/4419b0f0019c000db390b54d8b9d06e1d3670039
- github.com/mindsdb/mindsdb/releases/tag/v23.2.1.0
- github.com/mindsdb/mindsdb/security/advisories/GHSA-2g5w-29q9-w6hx
- github.com/pypa/advisory-database/tree/main/vulns/mindsdb/PYSEC-2023-27.yaml
- nvd.nist.gov/vuln/detail/CVE-2023-30620
Detect and mitigate CVE-2023-30620 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →