mirror of
https://github.com/kemko/nomad.git
synced 2026-01-01 16:05:42 +03:00
b3c0e6a7a5
This PR adds symlink resolution when doing validation of paths to ensure they do not escape client allocation directories.
4 lines
200 B
Plaintext
4 lines
200 B
Plaintext
```release-note:security
|
|
Resolve symlinks to prevent unauthorized access to files outside the allocation directory. [CVE-2022-24683](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24683)
|
|
```
|