Search CVE reports
1 – 2 of 2 results
CVE-2015-3027
Low priorityClang in LLVM, as used in Apple Xcode before 6.3, performs incorrect register allocation in a way that triggers stack storage for stack cookie pointers, which might allow context-dependent attackers to bypass a stack-guard...
7 affected packages
llvm, llvm-toolchain-3.2, llvm-toolchain-3.3, llvm-toolchain-3.4, llvm-toolchain-3.5...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
llvm | — | — | — | Not in release | Not in release |
llvm-toolchain-3.2 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.3 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.4 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.5 | — | — | — | Not in release | Ignored |
llvm-toolchain-3.6 | — | — | — | Not in release | Ignored |
llvm-toolchain-snapshot | — | — | — | Not in release | Not in release |
CVE-2014-2893
Low priorityThe GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names.
6 affected packages
llvm-toolchain-3.2, llvm-toolchain-3.3, llvm-toolchain-3.4, llvm-toolchain-3.5, llvm-toolchain-3.6, llvm-toolchain-snapshot
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
llvm-toolchain-3.2 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.3 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.4 | — | — | — | Not in release | Not in release |
llvm-toolchain-3.5 | — | — | — | Not in release | Not affected |
llvm-toolchain-3.6 | — | — | — | Not in release | Not affected |
llvm-toolchain-snapshot | — | — | — | Not in release | Not in release |