oss-sec mailing list archives
CVE request: insecure temporary file handling in clang's scan-build utility
From: Murray McAllister <mmcallis () redhat com>
Date: Wed, 16 Apr 2014 14:26:06 +1000
Hello,Jakub Wilk discovered that clang's scan-build utility insecurely handled temporary files. Full details in his report:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=744817 Can a CVE please be assigned? Cheers, -- Murray McAllister / Red Hat Security Response Team https://bugzilla.redhat.com/show_bug.cgi?id=1088105
Current thread:
- CVE request: insecure temporary file handling in clang's scan-build utility Murray McAllister (Apr 15)
- Re: CVE request: insecure temporary file handling in clang's scan-build utility cve-assign (Apr 18)
- Re: Bug#744817: CVE request: insecure temporary file handling in clang's scan-build utility Sylvestre Ledru (Apr 20)
- Message not available
- Re: Bug#744817: CVE request: insecure temporary file handling in clang's scan-build utility Sylvestre Ledru (Jun 16)
- Re: CVE request: insecure temporary file handling in clang's scan-build utility cve-assign (Apr 18)