10 lines
356 B
Plaintext
10 lines
356 B
Plaintext
== Ask Yourself Whether
|
|
|
|
Archives to expand are untrusted and:
|
|
|
|
* There is no validation of the number of entries in the archive.
|
|
* There is no validation of the total size of the uncompressed data.
|
|
* There is no validation of the ratio between the compressed and uncompressed archive entry.
|
|
|
|
There is a risk if you answered yes to any of those questions.
|