USN-4380-1: Apache Ant vulnerability
1 June 2020
Apache Ant could leak sensitive information or be made to run programs as your login.
- ant - Java based build tool like make
It was discovered that Apache Ant created temporary files with insecure
permissions. An attacker could use this vulnerability to read sensitive
information leaked into /tmp, or potentially inject malicious code into a
project that is built with Apache Ant.