Merge pull request #12 from exocad/cve-2024-48510

Guard for directory traversal attack (CVE-2024-48510)
exocad · Dec 10, 2024 · d292cb2 · d292cb2
2 parents ef47f96 + 7c46cf4
commit d292cb2
Show file tree

Hide file tree

Showing 12 changed files with 891 additions and 673 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -0,0 +1,19 @@
+# SevenZipSharp Changelog
+
+## [1.0.2] - 2024-12-10
+
+### Changed
+
+- Added a guard to prevent the [directory traversal attack (CVE-2024-48510)](https://github.com/advisories/GHSA-xhg6-9j5j-w4vf).
+
+## [1.0.1] - 2024-11-06
+
+### Changed
+
+- The generated assembly now always has a strong-name.
+
+## [1.0.0] - 2024-05-03
+
+### Changed
+
+- Initial release of the .NET SevenZip library.
diff --git a/Directory.Build.props b/Directory.Build.props
@@ -1,6 +1,6 @@
 <Project>
 	<PropertyGroup>
-		<Version>1.0.1</Version>
+		<Version>1.0.2</Version>
 		<ProductName>SevenZip</ProductName>
 		<Copyright>exocad GmbH</Copyright>
 		<Authors>exocad GmbH</Authors>

diff --git a/SevenZipSharpSimple.sln b/SevenZipSharpSimple.sln
@@ -8,9 +8,10 @@ EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = ".root", ".root", "{2FFF78F1-D3D3-4985-90F3-215CA5889969}"
 	ProjectSection(SolutionItems) = preProject
 		.gitignore = .gitignore
+		CHANGELOG.md = CHANGELOG.md
 		Directory.Build.props = Directory.Build.props
-		Native7zReferences.target = Native7zReferences.target
 		LICENSE.md = LICENSE.md
+		Native7zReferences.target = Native7zReferences.target
 		README.md = README.md
 	EndProjectSection
 EndProject