OpenClaw Archive Extraction Vulnerability in Tar.bz2 Installer Path Bypasses Safety Checks

A vulnerability exists in OpenClaw versions prior to 2026.3.2, specifically within the tar.bz2 installer path. This vulnerability allows crafted tar.bz2 skill archives to bypass safety checks that are enforced on other archive formats. The issue arises because the tar.bz2 extraction process does not include the same safety measures, enabling attackers to exploit this gap. As a result, the vulnerability can cause a local denial-of-service condition during the installation of affected skills.

Impact

Exploitation of this vulnerability leads to a local denial-of-service condition, causing availability issues during the installation of skills that use the tar.bz2 archive format.

Reproduction

To reproduce this vulnerability, create a tar.bz2 archive that includes special entries such as symlinks or oversized files. When this archive is processed through the OpenClaw skill installation, it will bypass the usual safety checks and cause a denial-of-service by either extracting the oversized file, which exceeds the allowed size limit, or by including a symlink that could disrupt the file system.

Remediation

Users can update to OpenClaw version 2026.3.2 or later, where this vulnerability has been patched.