CVE-2017-5188

The bs_worker code in open build service before 20170320 followed relative symlinks, allowing reading of files outside of the package source directory during build, allowing leakage of private information. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt