Mitigate CVE-2007-4559 (tarfile directory traversal).

pviktorirequested to merge
pviktori/python-dateutil:tarfile-c9s into c9s

dateutil.zoneinfo.rebuild handles "pure data" tarballs, here we disable tar features that are potentially unsafe.

Patch was submitted upstream, but rejected because they're removing this code entirely.

Resolves: rhbz#2203905

Merge request reports