MidnightBSD

Advisories for qpress_project

CVE-2022-45866

qpress before PierreLvx/qpress 20220819 and before version 11.3, as used in Percona XtraBackup and other products, allows directory traversal via ../ in a .qp file.

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 36
fedoraproject fedora 37
qpress_project qpress *