💾 Archived View for rawtext.club › ~sloum › geminilist › 006490.gmi captured on 2021-12-05 at 23:47:19. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2021-11-30)
-=-=-=-=-=-=-
Drew DeVault sir at cmpwn.com
Tue May 4 14:47:27 BST 2021
- - - - - - - - - - - - - - - - - - -
Versions of gmnisrv[0] which were built after commitea360fa4c10791c3c720c33470c86923424348fe are vulnerable to a pathtraversal exploit, in which a specially crafted Gemini request can beused to read any file on the host's filesystem.
[0]: https://git.sr.ht/~sircmpwn/gmnisrv
This issue was fixed in commit 0dc0e4432a70eafde69509fde8a29802e46ae712.