Andrew Nesbitt discovered that .install file directives were insufficiently restricted in OPAM, a package manager for OCaml. This could result in directory traversal out of the package area. For Debian 11 bullseye, this problem has been fixed in version 2.0.8-1+deb11u1.
Source: https://linuxsecurity.com/advisories/de ... 541-1-opam
Debian 11 opam Important Directory Traversal Fix DLA-4541-1 CVE-2026-41082
Who is online
Users browsing this forum: No registered users and 0 guests