Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and
earlier allows remote attackers to write to arbitrary files via a full
pathname in an archive.
Added to existing GLSA request.
This issue was resolved and addressed in
GLSA 201701-03 at https://security.gentoo.org/glsa/201701-03
by GLSA coordinator Thomas Deutschmann (whissi).