Description
Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on uncompressed size, file count, and nesting depth. Attackers can supply a crafted ZIP archive that expands to fill available disk space, causing denial of service by exhausting storage resources.
Problem types
Improper Handling of Highly Compressed Data (Data Amplification)
Product status
Any version before 2.0.1
2.0.1 (semver)
Credits
alienkeric
References
github.com/...v/grav/security/advisories/GHSA-928x-9mpw-8h56
github.com/...v/grav/security/advisories/GHSA-928x-9mpw-8h56 (GitHub Security Advisory (GHSA-928x-9mpw-8h56))
www.vulncheck.com/...fore-decompression-bomb-via-ziparchiver (VulnCheck Advisory: Grav before 2.0.1 Decompression Bomb via ZipArchiver)