Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-607-1
HistoryMay 06, 2008 - 12:00 a.m.

Emacs vulnerabilities

2008-05-0600:00:00
ubuntu.com
36

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.012

Percentile

85.5%

JSON

Releases

  • Ubuntu 8.04
  • Ubuntu 7.10
  • Ubuntu 7.04
  • Ubuntu 6.06

Packages

  • emacs21 -
  • emacs22 -

Details

It was discovered that Emacs did not account for precision when formatting
integers. If a user were tricked into opening a specially crafted file, an
attacker could cause a denial of service or possibly other unspecified
actions. This issue does not affect Ubuntu 8.04. (CVE-2007-6109)

Steve Grubb discovered that the vcdiff script as included in Emacs created
temporary files in an insecure way when used with SCCS. Local users could
exploit a race condition to create or overwrite files with the privileges
of the user invoking the program. (CVE-2008-1694)

OSVersionArchitecturePackageVersionFilename
Ubuntu8.04noarchemacs22<ย 22.1-0ubuntu10.1UNKNOWN
Ubuntu8.04noarchemacs22-bin-common<ย 22.1-0ubuntu10.1UNKNOWN
Ubuntu8.04noarchemacs22-gtk<ย 22.1-0ubuntu10.1UNKNOWN
Ubuntu8.04noarchemacs22-nox<ย 22.1-0ubuntu10.1UNKNOWN
Ubuntu7.10noarchemacs22<ย 22.1-0ubuntu5.2UNKNOWN
Ubuntu7.10noarchemacs22-bin-common<ย 22.1-0ubuntu5.2UNKNOWN
Ubuntu7.10noarchemacs22-gtk<ย 22.1-0ubuntu5.2UNKNOWN
Ubuntu7.10noarchemacs22-nox<ย 22.1-0ubuntu5.2UNKNOWN
Ubuntu7.04noarchemacs21<ย 21.4a+1-2ubuntu1.2UNKNOWN
Ubuntu7.04noarchemacs21-bin-common<ย 21.4a+1-2ubuntu1.2UNKNOWN
Rows per page:
1-10 of 141

Related

openvas 8
nessus 8
prion 2
cbl_mariner 2
nvd 2
ubuntucve 2
cve 2
debiancve 2
cvelist 2
securityvulns 2
seebug 1
gentoo 1
openvas
openvas
Ubuntu: Security Advisory (USN-607-1)
2009-03-23 00:00:00
Ubuntu Update for emacs21, emacs22 vulnerabilities USN-607-1
2009-03-23 00:00:00
Mandriva Update for emacs MDVSA-2008:096 (emacs)
2009-04-09 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : emacs21, emacs22 vulnerabilities (USN-607-1)
2008-05-09 00:00:00
openSUSE 10 Security Update : xemacs (xemacs-4944)
2008-01-27 00:00:00
Mandriva Linux Security Advisory : emacs (MDVSA-2008:096)
2009-04-23 00:00:00
prion
prion
Stack overflow
2007-12-07 11:46:00
Code injection
2008-04-22 04:41:00
cbl_mariner
cbl_mariner
CVE-2007-6109 affecting package emacs for versions less than 28.1-5
2023-01-03 20:57:36
CVE-2007-6109 affecting package emacs for versions less than 29.1-1
2024-03-19 17:21:46
nvd
nvd
CVE-2007-6109
2007-12-07 11:46:00
CVE-2008-1694
2008-04-22 04:41:00
ubuntucve
ubuntucve
CVE-2007-6109
2007-12-07 00:00:00
CVE-2008-1694
2008-04-22 00:00:00
cve
cve
CVE-2008-1694
2008-04-22 04:41:00
CVE-2007-6109
2007-12-07 11:46:00
debiancve
debiancve
CVE-2007-6109
2007-12-07 11:46:00
CVE-2008-1694
2008-04-22 04:41:00
cvelist
cvelist
CVE-2007-6109
2007-12-07 11:00:00
CVE-2008-1694
2008-04-21 20:00:00
securityvulns
securityvulns
[ MDVSA-2008:096 ] - Updated emacs packages fix vulnerability in vcdiff
2008-05-08 00:00:00
emacs symbolic links vulnerability
2008-05-08 00:00:00
seebug
seebug
GNU Emacsๅˆ›ๅปบไธๅฎ‰ๅ…จไธดๆ—ถๆ–‡ไปถๆผๆดž
2008-04-23 00:00:00
gentoo
gentoo
GNU Emacs: Multiple vulnerabilities
2007-12-09 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.012

Percentile

85.5%

JSON
Related for USN-607-1
openvas8nessus8prion2cbl_mariner2nvd2ubuntucve2cve2debiancve2cvelist2securityvulns2seebug1gentoo1