GeorgeGW

Hi Ipavlov, I trust there are plenty of issues to keep you busy. I hope you are reading this issue page. But this particular security issue of potenial HIGH severity, may I suggest a quick and dirty fix to plug the security hole first? Don't worry about complicated in-place updating the changes of decrypted file back into the 7zip encrypted file. Just focusing plugging the security hole: deleting those temp decrypted files. My first thought is: del /s /q C:\Users\<user>\AppData\Local\Temp\<All_Just_decryupted_files>....

Gary. Your suggestion is excellent. Any update on the status of fixing this bug?

Gary W's suggestion makes a lot of sense. I appreciate the 7zip author's effort of building a technically excellent software. It is like a great jet engine installed on a great 747 with a few key bolts not tightened right. And the plane takes its passengers to 30,000 ft and cruising along beautifully. BUT, those few bolts got loosen and the engine is about to fall off the plane... Is this bug being worked on? I would highly recommend fixing this bug ASAP considering the recent event at Equifax.