oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE request: insecure temporary file handling in clang's scan-build utility

From: Murray McAllister <mmcallis () redhat com>
Date: Wed, 16 Apr 2014 14:26:06 +1000
Hello,
Jakub Wilk discovered that clang's scan-build utility insecurely handled temporary files. Full details in his report: 

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=744817

Can a CVE please be assigned?

Cheers,

--
Murray McAllister / Red Hat Security Response Team

https://bugzilla.redhat.com/show_bug.cgi?id=1088105
Previous By Date Next
Previous By Thread Next

Current thread: