drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Unsichere Verwendung temporärer Dateien in ant
Name: |
Unsichere Verwendung temporärer Dateien in ant |
|
ID: |
FEDORA-2020-52741b0a49 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 31 |
|
Datum: |
Di, 2. Juni 2020, 08:07 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1945
https://bugzilla.redhat.com/show_bug.cgi?id=1835326 |
|
Applikationen: |
Apache Ant |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2020-52741b0a49 2020-06-02 03:13:01.308763 ------------------------------------------------------------------------------- -
Name : ant Product : Fedora 31 Version : 1.10.8 Release : 1.fc31 URL : https://ant.apache.org/ Summary : Java build tool Description : Apache Ant is a Java library and command-line tool whose mission is to drive processes described in build files as targets and extension points dependent upon each other. The main known usage of Ant is the build of Java applications. Ant supplies a number of built-in tasks allowing to compile, assemble, test and run Java applications. Ant can also be used effectively to build non Java applications, for instance C or C++ applications. More generally, Ant can be used to pilot any type of process which can be described in terms of targets and tasks.
------------------------------------------------------------------------------- - Update Information:
Update to version 1.10.8. Resolves: CVE-2020-1945 ------------------------------------------------------------------------------- - ChangeLog:
* Sat May 16 2020 Fabio Valentini <decathorpe@gmail.com> - 0:1.10.8-1 - Update to version 1.10.8. - Addresses: CVE-2020-1945 * Fri May 8 2020 Fabio Valentini <decathorpe@gmail.com> - 0:1.10.7-1 - Update to version 1.10.7. ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1835326 - ant-1.10.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1835326 [ 2 ] Bug #1837445 - CVE-2020-1945 ant: insecure temporary file vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1837445 ------------------------------------------------------------------------------- -
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-52741b0a49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
|
|
|
|