Headline
CVE-2022-29072: SourceForge.net: Log In to SourceForge.net
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll and a heap overflow. The command runs in a child process under the 7zFM.exe process,
Log in with a SourceForge account
Need an account on SourceForge.net?****Find, Create, and Publish Open Source software for free
Join our community dedicated to helping open source projects be as successful as possible. We thrive on community collaboration to help us create a premiere resource for open source software development and distribution.