[jira] [Closed] (GROOVY-9552) Bump Ant versions to address: [CVE-2020-1945] Apache Ant insecure temporary file vulnerability

Paul King (Jira) Thu, 21 May 2020 21:03:31 -0700


     [ 
https://issues.apache.org/jira/browse/GROOVY-9552?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Paul King closed GROOVY-9552.
-----------------------------

> Bump Ant versions to address: [CVE-2020-1945] Apache Ant insecure temporary 
> file vulnerability
> ----------------------------------------------------------------------------------------------
>
>                 Key: GROOVY-9552
>                 URL: https://issues.apache.org/jira/browse/GROOVY-9552
>             Project: Groovy
>          Issue Type: Dependency upgrade
>            Reporter: Paul King
>            Assignee: Paul King
>            Priority: Major
>             Fix For: 4.0.0-alpha-1, 3.0.4, 2.5.12
>
>
> I think it is a low risk for Groovy users but we might as well get the latest 
> Ant and have the extra mechanisms in place as described by:
> https://lists.apache.org/thread.html/r8e592bbfc016a5dbe2a8c0e81ff99682b9c78c453621b82c14e7b75e%40%3Cdev.ant.apache.org%3E



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Closed] (GROOVY-9552) Bump Ant versions to address: [CVE-2020-1945] Apache Ant insecure temporary file vulnerability

Reply via email to