View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2007-4559 severity moderate: SUSE including 701 source package names (0.0.17-1.1:libpython3_6m1_0-3.6.15-150300.10.48.1, 0.0.17-1.1:python3-3.6.15-150300.10.48.1, …), 2374 product×package rows across 398 product lines (Container bci/bci-base-fips, Container bci/bci-sle15-kernel-module-devel, … (398 product lines)): Fixed 2130, Known Affected 160, Will Not Fix 84.
Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.