/ 
Archive-Zip-1.49
River stage four • 180 direct dependents • 1340 total dependents
⭐ Starred 15 GitHub stars
Security Advisories (1)
CVE-2018-10860 (2018-06-28)

perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could use this flaw to write or overwrite arbitrary files in the context of the perl interpreter.

Changes for version 1.49

  • Fails on unseekable file handle after desiredCompressionLevel(), RT #54827
  • Upgrade build tools to avoid tar warnings, RT #105547

Documentation

Archive::Zip::FAQ
Answers to a few frequently asked questions about Archive::Zip

Modules

Archive::Zip
Provide an interface to ZIP archive files.
Archive::Zip::MemberRead
A wrapper that lets you read Zip archive members as if they were files.
Archive::Zip::Tree
(DEPRECATED) methods for adding/extracting trees using Archive::Zip

Provides

Archive::Zip::Archive
in lib/Archive/Zip/Archive.pm
Archive::Zip::BufferedFileHandle
in lib/Archive/Zip/BufferedFileHandle.pm
Archive::Zip::DirectoryMember
in lib/Archive/Zip/DirectoryMember.pm
Archive::Zip::FileMember
in lib/Archive/Zip/FileMember.pm
Archive::Zip::Member
in lib/Archive/Zip/Member.pm
Archive::Zip::MockFileHandle
in lib/Archive/Zip/MockFileHandle.pm
Archive::Zip::NewFileMember
in lib/Archive/Zip/NewFileMember.pm
Archive::Zip::StringMember
in lib/Archive/Zip/StringMember.pm
Archive::Zip::ZipFileMember
in lib/Archive/Zip/ZipFileMember.pm

Examples

Other files