OPENSUSE-SU-2020:0703-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2018-10886

Published: 23 May 2020, 18:14

Last modified:04 Feb 2026, 03:00

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

23 May 2020, 18:14

Published

Vulnerability first disclosed

04 Feb 2026, 03:00

Last Modified

Vulnerability information updated

Description

Security update for ant This update for ant fixes the following issues: Security issue fixed: - CVE-2018-10886: Fixed a path traversal vulnerability in malformed zip file paths, which allowed arbitrary file writes and could potentially lead to code execution (bsc#1100053). Non-security issues fixed: - Add rhino to the ant-apache-bsf optional tasks (bsc#1134001). - Remove jakarta-commons-logging dependencies (bsc#1133997). - Use apache-commons-logging in optional tasks This update was imported from the SUSE:SLE-15:Update update project.

Affected Systems

opensuse•ant-antlr&distro=openSUSE Leap 15.1
< 1.9.10-lp151.4.3.1
opensuse•ant-junit&distro=openSUSE Leap 15.1
< 1.9.10-lp151.4.3.1
opensuse•ant&distro=openSUSE Leap 15.1
< 1.9.10-lp151.4.3.1

OPENSUSE-SU-2020:0703-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)