USN-3721-1: Apache Ant vulnerability
24 July 2018
Apache Ant could be made to overwrite files.
Releases
Packages
- ant - Java based build tool like make
Details
Danny Grander discovered that Apache Ant incorrectly handled certain
compressed files. If a user or automated system were tricked into
processing a specially crafted file, a remote attacker could use this issue
to overwrite arbitrary files.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04
In general, a standard system update will make all the necessary changes.