Your submission was sent successfully! Close

USN-4380-1: Apache Ant vulnerability

1 June 2020

Apache Ant could leak sensitive information or be made to run programs as your login.



  • ant - Java based build tool like make


It was discovered that Apache Ant created temporary files with insecure
permissions. An attacker could use this vulnerability to read sensitive
information leaked into /tmp, or potentially inject malicious code into a
project that is built with Apache Ant.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 19.10

In general, a standard system update will make all the necessary changes.