{"author":"Daniel Stenberg","author_email":"daniel@haxx.se","author_time":1737286539,"commit_time":1737365677,"committer":"Daniel Stenberg","committer_email":"daniel@haxx.se","hash":"0f54bfd8039be44bf6106656c1b3fdff786196ab","message":"libcurl/opts: do not save files in dirs where attackers have access\n\nlibcurl cannot fully protect against attacks where an attacker has write\naccess to the same directory where it is directed to save files. This is\nparticularly sensitive if you save files using elevated privileges.\n\nPreviously only mentioned in VULN-DISCLOSURE-POLICY.md.\n\nHighlighted-by: Donguk Kim\n\nCloses #16051\n","parents":["f1dbe68172604f91978847ad1b4656b001470d80"],"tree_hash":"2b7a7d0770b6153546d57167e4f65837172c8579"}