The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 999 | all | llvm-toolchain-snapshot | < 1:15~++20220625103012+3d37e785c77a-1~exp1 | llvm-toolchain-snapshot_1:15~++20220625103012+3d37e785c77a-1~exp1_all.deb |