diff options
author | Otto Moerbeek <otto@cvs.openbsd.org> | 2004-04-16 07:03:05 +0000 |
---|---|---|
committer | Otto Moerbeek <otto@cvs.openbsd.org> | 2004-04-16 07:03:05 +0000 |
commit | bf2cb9d524ff65885c7f607eb7d3e8e0b213d318 (patch) | |
tree | 4c6af25518d0789073be0d31e05b07c94eab6d7d /lib/libc/gen/getcap.3 | |
parent | 388d4c4fd127cb9e3d74a168d300d1645af06f6e (diff) |
- a malicious server may send path names that translate out of the
local cvs tree on the client, enabling the server to overwrite files
on the client.
- a client may read files outside the repository using the -p flag
with the checkout command.
ok deraadt@
Diffstat (limited to 'lib/libc/gen/getcap.3')
0 files changed, 0 insertions, 0 deletions