Drupal Addresses PEAR Archive

Read the original article: Drupal Addresses PEAR Archive_Tar Vulnerability

Drupal released a security advisory on January 20th to address a critical vulnerability within a third-party library. This library comes from PHP’s PEAR, which describes itself as “a framework and distribution system for reusable PHP components.” Drupal’s advisory states that the project uses Archive_Tar from the PEAR framework to process .tar, .tar.gz, .bz2 and .tlz […]

The post Drupal Addresses PEAR Archive_Tar Vulnerability appeared first on Binary Defense.

Become a supporter of IT Security News and help us remove the ads.