« List of all CVEs

CVE-2014-2893

Published: 4/23/2014 Last updated: 8/6/2024 Reserved: 4/17/2014

The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (14)

bap-llvm bap-std brotli conf-bap-llvm conf-clang conf-clang-format conf-libclang conf-lld conf-llvm conf-llvm-shared conf-llvm-static mopsa owi z3

Products affected (2)

Product Vendor Version
n/a n/a <= 5.17.*
n/a n/a S4CEXT 107

References (16)