Download
| Alert*
|
oval:org.secpod.oval:def:118287
Apache Ant is a Java library and command-line tool whose mission is to drive processes described in build files as targets and extension points dependent upon each other. The main known usage of Ant is the build of Java applications. Ant supplies a number of built-in tasks allowing to compile, assem ... oval:org.secpod.oval:def:118291 Apache Ant is a Java library and command-line tool whose mission is to drive processes described in build files as targets and extension points dependent upon each other. The main known usage of Ant is the build of Java applications. Ant supplies a number of built-in tasks allowing to compile, assem ... oval:org.secpod.oval:def:1801745 Apache Ant uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files from the temporary directory back into the build tree allowing an attacker to inject mo ... oval:org.secpod.oval:def:89047884 This update for ant fixes the following issues: - CVE-2020-1945: Fixed insecure temporary file vulnerability . - CVE-2020-11979: Fixed issue introduced with fix for CVE-2020-1945 . oval:org.secpod.oval:def:2106110 Oracle Solaris 11 - ( CVE-2020-1945 ) oval:org.secpod.oval:def:705499 ant: Java based build tool like make Apache Ant could leak sensitive information or be made to run programs as your login. |
