René's URL Explorer Experiment

Title: Fix for CVE-2024-55587: Prevent Directory Traversal in ZIP Extraction by ezhiltech · Pull Request #43 · smartfile/python-libarchive · GitHub

Open Graph Title: Fix for CVE-2024-55587: Prevent Directory Traversal in ZIP Extraction by ezhiltech · Pull Request #43 · smartfile/python-libarchive

X Title: Fix for CVE-2024-55587: Prevent Directory Traversal in ZIP Extraction by ezhiltech · Pull Request #43 · smartfile/python-libarchive

Description: PR Description: Issue Addressed This PR mitigates the security vulnerability CVE-2024-55587, which allows directory traversal attacks when extracting ZIP files using python-libarchive. Fix Implemen...

Open Graph Description: PR Description: Issue Addressed This PR mitigates the security vulnerability CVE-2024-55587, which allows directory traversal attacks when extracting ZIP files using python-libarchive. Fix Implemen...

X Description: PR Description: Issue Addressed This PR mitigates the security vulnerability CVE-2024-55587, which allows directory traversal attacks when extracting ZIP files using python-libarchive. Fix Implemen...

Opengraph URL: https://github.com/smartfile/python-libarchive/pull/43

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern	/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controller	voltron_pull_requests_fragments
route-action	pull_request_layout
fetch-nonce	v2:b7099c88-d47b-fa27-a8cf-2e6d44d682f0
current-catalog-service-hash	ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-id	EBCE:5D4B9:582F7A:733F9E:6980331E
html-safe-nonce	d9cbbcc5e5967508f37d5f2153a3249009ca813944fbe7820c8279b024b950be
visitor-payload	eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFQkNFOjVENEI5OjU4MkY3QTo3MzNGOUU6Njk4MDMzMUUiLCJ2aXNpdG9yX2lkIjoiNzMzODY3NDk2ODE5ODEzMjUxMCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac	069af3e2fb944472effdc4264b8e6d4e45a7f2efb0995d6f4cd776bc4ce837e3
hovercard-subject-tag	pull_request:2352711173
github-keyboard-shortcuts	repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verification	Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-url	https://collector.github.com/github/collect
analytics-location	///voltron/pull_requests_fragments/pull_request_layout
fb:app_id	1401488693436528
apple-itunes-app	app-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/smartfile/python-libarchive/43/pull_request_layout
twitter:image	https://opengraph.githubassets.com/8ee8fcc33a8e1a883e9137cf63e394d3eeed6cfba7a9f062922ebba108390d6e/smartfile/python-libarchive/pull/43
twitter:card	summary_large_image
og:image	https://opengraph.githubassets.com/8ee8fcc33a8e1a883e9137cf63e394d3eeed6cfba7a9f062922ebba108390d6e/smartfile/python-libarchive/pull/43
og:image:alt	PR Description: Issue Addressed This PR mitigates the security vulnerability CVE-2024-55587, which allows directory traversal attacks when extracting ZIP files using python-libarchive. Fix Implemen...
og:image:width	1200
og:image:height	600
og:site_name	GitHub
og:type	object
og:author:username	ezhiltech
hostname	github.com
expected-hostname	github.com
None	60279d4097367e16897439d16d6bbe4180663db828c666eeed2656988ffe59f6
turbo-cache-control	no-preview
go-import	github.com/smartfile/python-libarchive git https://github.com/smartfile/python-libarchive.git
octolytics-dimension-user_id	2232208
octolytics-dimension-user_login	smartfile
octolytics-dimension-repository_id	21706845
octolytics-dimension-repository_nwo	smartfile/python-libarchive
octolytics-dimension-repository_public	true
octolytics-dimension-repository_is_fork	true
octolytics-dimension-repository_parent_id	21630086
octolytics-dimension-repository_parent_nwo	travcunn/python-libarchive
octolytics-dimension-repository_network_root_id	21630086
octolytics-dimension-repository_network_root_nwo	travcunn/python-libarchive
turbo-body-classes	logged-out env-production page-responsive
disable-turbo	false
browser-stats-url	https://api.github.com/_private/browser/stats
browser-errors-url	https://api.github.com/_private/browser/errors
release	7c85641c598ad130c74f7bcc27f58575cac69551
ui-target	full
theme-color	#1e2327
color-scheme	light dark

Links:

Skip to content	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43#start-of-content
	https://patch-diff.githubusercontent.com/
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fsmartfile%2Fpython-libarchive%2Fpull%2F43
GitHub CopilotWrite better code with AI	https://github.com/features/copilot
GitHub SparkBuild and deploy intelligent apps	https://github.com/features/spark
GitHub ModelsManage and compare prompts	https://github.com/features/models
MCP RegistryNewIntegrate external tools	https://github.com/mcp
ActionsAutomate any workflow	https://github.com/features/actions
CodespacesInstant dev environments	https://github.com/features/codespaces
IssuesPlan and track work	https://github.com/features/issues
Code ReviewManage code changes	https://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilities	https://github.com/security/advanced-security
Code securitySecure your code as you build	https://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they start	https://github.com/security/advanced-security/secret-protection
Why GitHub	https://github.com/why-github
Documentation	https://docs.github.com
Blog	https://github.blog
Changelog	https://github.blog/changelog
Marketplace	https://github.com/marketplace
View all features	https://github.com/features
Enterprises	https://github.com/enterprise
Small and medium teams	https://github.com/team
Startups	https://github.com/enterprise/startups
Nonprofits	https://github.com/solutions/industry/nonprofits
App Modernization	https://github.com/solutions/use-case/app-modernization
DevSecOps	https://github.com/solutions/use-case/devsecops
DevOps	https://github.com/solutions/use-case/devops
CI/CD	https://github.com/solutions/use-case/ci-cd
View all use cases	https://github.com/solutions/use-case
Healthcare	https://github.com/solutions/industry/healthcare
Financial services	https://github.com/solutions/industry/financial-services
Manufacturing	https://github.com/solutions/industry/manufacturing
Government	https://github.com/solutions/industry/government
View all industries	https://github.com/solutions/industry
View all solutions	https://github.com/solutions
AI	https://github.com/resources/articles?topic=ai
Software Development	https://github.com/resources/articles?topic=software-development
DevOps	https://github.com/resources/articles?topic=devops
Security	https://github.com/resources/articles?topic=security
View all topics	https://github.com/resources/articles
Customer stories	https://github.com/customer-stories
Events & webinars	https://github.com/resources/events
Ebooks & reports	https://github.com/resources/whitepapers
Business insights	https://github.com/solutions/executive-insights
GitHub Skills	https://skills.github.com
Documentation	https://docs.github.com
Customer support	https://support.github.com
Community forum	https://github.com/orgs/community/discussions
Trust center	https://github.com/trust-center
Partners	https://github.com/partners
GitHub SponsorsFund open source developers	https://github.com/sponsors
Security Lab	https://securitylab.github.com
Maintainer Community	https://maintainers.github.com
Accelerator	https://github.com/accelerator
Archive Program	https://archiveprogram.github.com
Topics	https://github.com/topics
Trending	https://github.com/trending
Collections	https://github.com/collections
Enterprise platformAI-powered developer platform	https://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security features	https://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI features	https://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 support	https://github.com/premium-support
Pricing	https://github.com/pricing
Search syntax tips	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentation	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fsmartfile%2Fpython-libarchive%2Fpull%2F43
Sign up	https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=smartfile%2Fpython-libarchive
Reload	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
Reload	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
Reload	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
smartfile	https://patch-diff.githubusercontent.com/smartfile
python-libarchive	https://patch-diff.githubusercontent.com/smartfile/python-libarchive
travcunn/python-libarchive	https://patch-diff.githubusercontent.com/travcunn/python-libarchive
Notifications	https://patch-diff.githubusercontent.com/login?return_to=%2Fsmartfile%2Fpython-libarchive
Fork 16	https://patch-diff.githubusercontent.com/login?return_to=%2Fsmartfile%2Fpython-libarchive
Star 23	https://patch-diff.githubusercontent.com/login?return_to=%2Fsmartfile%2Fpython-libarchive
Code	https://patch-diff.githubusercontent.com/smartfile/python-libarchive
Issues 8	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/issues
Pull requests 3	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pulls
Actions	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/actions
Projects 0	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/projects
Wiki	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/wiki
Security 0	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/security
Insights	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pulse
Code	https://patch-diff.githubusercontent.com/smartfile/python-libarchive
Issues	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/issues
Pull requests	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pulls
Actions	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/actions
Projects	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/projects
Wiki	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/wiki
Security	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/security
Insights	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pulse
Sign up for GitHub	https://patch-diff.githubusercontent.com/signup?return_to=%2Fsmartfile%2Fpython-libarchive%2Fissues%2Fnew%2Fchoose
terms of service	https://docs.github.com/terms
privacy statement	https://docs.github.com/privacy
Sign in	https://patch-diff.githubusercontent.com/login?return_to=%2Fsmartfile%2Fpython-libarchive%2Fissues%2Fnew%2Fchoose
Jump to bottom	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43#issue-comment-box
ezhiltech	https://patch-diff.githubusercontent.com/ezhiltech
smartfile:master	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/tree/master
ezhiltech:master	https://patch-diff.githubusercontent.com/ezhiltech/python-libarchive/tree/master
Fix for CVE-2024-55587: Prevent Directory Traversal in ZIP Extraction	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43#top
ezhiltech	https://patch-diff.githubusercontent.com/ezhiltech
smartfile:master	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/tree/master
ezhiltech:master	https://patch-diff.githubusercontent.com/ezhiltech/python-libarchive/tree/master
Conversation 0	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
Commits 4	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits
Checks 0	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/checks
Files changed	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/files
Please reload this page	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
	https://github.co/hiddenchars
	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/{{ revealButtonHref }}
	https://patch-diff.githubusercontent.com/ezhiltech
ezhiltech	https://patch-diff.githubusercontent.com/ezhiltech
Feb 24, 2025	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43#issue-2873903863
CVE-2024-55587	https://github.com/advisories/GHSA-75mx-hw5q-pvx3
Please reload this page	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
February 17, 2025 16:36	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43#commits-pushed-ada1789
Fix for Vulnerability "	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/ada1789e81a52a658ad2f2f9917f870d784c5e07
CVE-2024-55587	https://github.com/advisories/GHSA-75mx-hw5q-pvx3
"	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/ada1789e81a52a658ad2f2f9917f870d784c5e07
ada1789	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/ada1789e81a52a658ad2f2f9917f870d784c5e07
	https://patch-diff.githubusercontent.com/ezhiltech
Updated zip.py	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/b8eb3a43df01a468a29590edb85408c7eb14248d
b8eb3a4	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/b8eb3a43df01a468a29590edb85408c7eb14248d
	https://patch-diff.githubusercontent.com/ezhiltech
Create test_zip.py	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/98f6f5d85111feaae97b51d03f5a540edb158d57
98f6f5d	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/98f6f5d85111feaae97b51d03f5a540edb158d57
	https://patch-diff.githubusercontent.com/ezhiltech
Merge pull request	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/0fe09307f1504c471f94dd7f882c565597f066c7
#1	https://github.com/ezhiltech/python-libarchive/pull/1
from ezhiltech/feature_master_MVA8	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/0fe09307f1504c471f94dd7f882c565597f066c7
0fe0930	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43/commits/0fe09307f1504c471f94dd7f882c565597f066c7
Sign up for free	https://patch-diff.githubusercontent.com/join?source=comment-repo
Sign in to comment	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fsmartfile%2Fpython-libarchive%2Fpull%2F43
Please reload this page	https://patch-diff.githubusercontent.com/smartfile/python-libarchive/pull/43
	https://patch-diff.githubusercontent.com/ezhiltech
	https://github.com
Terms	https://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacy	https://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Security	https://github.com/security
Status	https://www.githubstatus.com/
Community	https://github.community/
Docs	https://docs.github.com/
Contact	https://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.