GHSA-hj4g-4w36-x8hp

Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/01/GHSA-hj4g-4w36-x8hp/GHSA-hj4g-4w36-x8hp.json

Aliases

• CVE-2022-47747

Published

2023-01-20T18:30:22Z

Modified

2023-01-27T21:42:18Z

Details

kraken <= 0.1.4 has an arbitrary file read vulnerability via the component testfs.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-47747
• https://github.com/uber/kraken/issues/333
• https://github.com/uber/kraken