imagex-apply.1.in: Add note about directory traversal attacks

author Eric Biggers <ebiggers3@gmail.com>

Wed, 15 Jan 2014 03:36:30 +0000 (21:36 -0600)

committer Eric Biggers <ebiggers3@gmail.com>

Wed, 15 Jan 2014 03:38:39 +0000 (21:38 -0600)
author Eric Biggers <ebiggers3@gmail.com>
Wed, 15 Jan 2014 03:36:30 +0000 (21:36 -0600)
committer Eric Biggers <ebiggers3@gmail.com>
Wed, 15 Jan 2014 03:38:39 +0000 (21:38 -0600)
diff --git a/doc/imagex-apply.1.in b/doc/imagex-apply.1.in

index 46bf7ec1708700a61e17b410a01b7364594d55e2..1a6d0a4114e404404f5cdb46c59ed7bd7355c035 100644 (file)
--- a/doc/imagex-apply.1.in
+++ b/doc/imagex-apply.1.in
@@ -386,6 +386,12 @@ WIMs, which usually contain LZMS-compressed solid blocks and may carry the
  \fI.esd\fR file extension rather than \fI.wim\fR.  However, \fI.esd\fR files
  downloaded directly by the Windows 8 web downloader have encrypted segments, and
  wimlib cannot extract such files until they are first decrypted.
+.PP
+\fIDirectory traversal attacks\fR:  wimlib validates filenames before extracting
+them and is not vulnerable to directory traversal attacks.  This is in contrast
+to Microsoft WIMGAPI/Imagex/Dism which can override arbitrary files on the
+target drive when extracting a malicious WIM file containing files named
+\fI..\fR or containing path separators.
  .SH EXAMPLES
  Extract the first image from the Windows PE image on the Windows Vista/7/8
  installation media to the directory "boot":
author	Eric Biggers <ebiggers3@gmail.com>
	Wed, 15 Jan 2014 03:36:30 +0000 (21:36 -0600)
committer	Eric Biggers <ebiggers3@gmail.com>
	Wed, 15 Jan 2014 03:38:39 +0000 (21:38 -0600)