Revert branch 'genexuslabs:fix/gxcompress-abitrary-file-access' into beta

Author: sgrampone

gxcompress/src/main/java/com/genexus/compression/GXCompressor.java

@@ -636,20 +636,26 @@ private static void decompress7z(File archive, String directory) throws IOExcept
 		}
 	}
 
+	private static boolean isPathTraversal(String dir, String fName) {
+		try {
+			Path path = Paths.get(dir).resolve(fName);
+			return !path.toAbsolutePath().equals(path.toRealPath());
+		}catch (Exception e){
+			return true;
+		}
+	}
+
 	private static void decompressTar(File archive, String directory) throws IOException {
 		byte[] buffer = new byte[BUFFER_SIZE];
-		final Path targetDir = Paths.get(directory).toAbsolutePath().normalize();
 		try (TarArchiveInputStream tis = new TarArchiveInputStream(Files.newInputStream(archive.toPath()))) {
 			TarArchiveEntry entry;
 			while ((entry = tis.getNextEntry()) != null) {
-				Path entryPath = targetDir.resolve(entry.getName()).normalize();
-				if(!entryPath.startsWith(targetDir))
+				if(isPathTraversal(directory, entry.getName()))
 				{
 					log.error(DIRECTORY_ATTACK + "{}", entry.getName());
 					return;
 				}else {
-
-					File newFile = entryPath.toFile();
+					File newFile = new File(directory, entry.getName());
 
 					if (entry.isDirectory()) {
 						if (!newFile.isDirectory() && !newFile.mkdirs()) {