[erlang-questions] zip:unzip/2 protect from escaping the working directory?

pablo platt <>
Thu Aug 14 18:57:39 CEST 2014


Hi,

Can a zip archive escape the working directory or cwd when extracting it?
zip:unzip(Archive, [{cwd, CWD}])

Is it possible that a file will be extracted to ../working_dir or even
/var/lib/some_file ?

Same question for erl_tar:extract(Name, OptionList)

Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20140814/086e6b24/attachment.html>


More information about the erlang-questions mailing list