Skip to content

Fix potential path traversal vulnerability during bundle extraction#1882

Merged
Quantumrunner merged 1 commit into
masterfrom
bug/securityFixcode-scanning1
Jun 20, 2026
Merged

Fix potential path traversal vulnerability during bundle extraction#1882
Quantumrunner merged 1 commit into
masterfrom
bug/securityFixcode-scanning1

Conversation

@Quantumrunner

Copy link
Copy Markdown
Collaborator

Added Path.GetFullPath validation in BundleFile.cs when extracting Unity bundle files to disk. This ensures that maliciously crafted bundle files with directory traversal characters (../) in their filenames cannot write arbitrary files outside the intended _unpacked target directory. This addresses the valid portion of the "Zip Slip" Code Scanning alert.

Added `Path.GetFullPath` validation in `BundleFile.cs` when extracting Unity bundle files to disk. This ensures that maliciously crafted bundle files with directory traversal characters (`../`) in their filenames cannot write arbitrary files outside the intended `_unpacked` target directory.
This addresses the valid portion of the "Zip Slip" Code Scanning alert.
@Quantumrunner Quantumrunner merged commit 5adfa3d into master Jun 20, 2026
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant