dpkg: Security Upgrade to 1.21.8

[CamberLoid]

CVE IDs

CVE-2022-1664

Other security advisory IDs

Upstream / Debian: DSA-5147 CVE-2022-1664 Ubuntu tracker: CVE-2022-1664

Description

From upstream:

directory traversal for in-place extracts with untrusted v2 and v3 source packages with debian.tar

This vulnerability is fixed in dpkg version 1.21.8

Patches

N/A

PoC(s)

N/A