CVE-2020-1945: user/ant: insecure temporary file use
| Bugzilla ID | 288 |
| Alias(es) | CVE-2020-11979, CVE-2020-1945 |
| Reporter | Max Rees (sroracle) |
| Assignee | Alyx Wolcott |
| Reported | 2020-05-15 17:03:51 -0500 |
| Modified | 2020-10-26 20:18:38 -0500 |
| Status | IN_PROGRESS |
| Version | 1.0-RC1 |
| Hardware | Adélie Linux / All |
| Importance | --- / normal |
| Package(s) | user/ant |
| URL | https://nvd.nist.gov/vuln/detail/CVE-2020-1945 |
Description
CVE-2020-1945: https://nvd.nist.gov/vuln/detail/CVE-2020-1945
Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default
temporary directory identified by the Java system property
java.io.tmpdir for several tasks and may thus leak sensitive
information. The fixcrlf and replaceregexp tasks also copy files from
the temporary directory back into the build tree allowing an attacker
to inject modified source files into the build process.
https://www.openwall.com/lists/oss-security/2020/05/13/1
http://ant.apache.org/security.html
Fixed in >= 1.10.8