Search CVE reports


Toggle filters

1 – 2 of 2 results


CVE-2015-3027

Low priority
Ignored

Clang in LLVM, as used in Apple Xcode before 6.3, performs incorrect register allocation in a way that triggers stack storage for stack cookie pointers, which might allow context-dependent attackers to bypass a stack-guard...

7 affected packages

llvm, llvm-toolchain-3.2, llvm-toolchain-3.3, llvm-toolchain-3.4, llvm-toolchain-3.5...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
llvm Not in release Not in release
llvm-toolchain-3.2 Not in release Not in release
llvm-toolchain-3.3 Not in release Not in release
llvm-toolchain-3.4 Not in release Not in release
llvm-toolchain-3.5 Not in release Ignored
llvm-toolchain-3.6 Not in release Ignored
llvm-toolchain-snapshot Not in release Not in release
Show all 7 packages Show less packages

CVE-2014-2893

Low priority
Ignored

The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names.

6 affected packages

llvm-toolchain-3.2, llvm-toolchain-3.3, llvm-toolchain-3.4, llvm-toolchain-3.5, llvm-toolchain-3.6, llvm-toolchain-snapshot

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
llvm-toolchain-3.2 Not in release Not in release
llvm-toolchain-3.3 Not in release Not in release
llvm-toolchain-3.4 Not in release Not in release
llvm-toolchain-3.5 Not in release Not affected
llvm-toolchain-3.6 Not in release Not affected
llvm-toolchain-snapshot Not in release Not in release
Show less packages