Skip to content

Tarfile ignores an error when trying to extract a directory on top of a file #114959

New issue
New issue
Closed
Closed
Tarfile ignores an error when trying to extract a directory on top of a file#114959
Assignees
serhiy-storchaka
Labels
3.11only security fixes3.12only security fixes3.13bugs and security fixestype-bugAn unexpected behavior, bug, or error
@serhiy-storchaka

Description

@serhiy-storchaka
serhiy-storchaka
opened on Feb 3, 2024

Bug report

During review of #112966 and #103263 I found inconsistency between zipfile and tarfile. When zipfile tries to extract a directory on top of an existing file, it fails. When tarfile tries to extract a directory on top of an existing file, it silently returns, keeping an existing file. This is an obvious bug in tarfile.

Both modules should be more cautious when extract on top of symlinks, but this is a different issue.

Linked PRs

Metadata

Metadata

Assignees

Labels

3.11only security fixes3.12only security fixes3.13bugs and security fixestype-bugAn unexpected behavior, bug, or error

Projects

Tarfile issues

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions