RHEL 2.1 : semi (RHSA-2003:231)

Updated semi packages that fix vulnerabilities in semi's temporary file handling are now available. semi is a MIME library for GNU Emacs and XEmacs used by the wl mail package. A vulnerability in semi version 1.14.3 and earlier allows an attacker to overwrite arbitrary files with potentially...

CVE-2003-0440

The 1 semi MIME library 1.14.5 and earlier, and 2 wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2003-0440

The 1 semi MIME library 1.14.5 and earlier, and 2 wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2003-0440

The 1 semi MIME library 1.14.5 and earlier, and 2 wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2003-0440

CVE-2003-0440 concerns the semi MIME library and its fork wemi, where insecure temporary-file handling allows a local attacker to overwrite arbitrary files via a symlink attack. Public sources (NVD entry) cite semi up to version 1.14.5 and wemi up to 1.14.0 as vulnerable; Debian, Red Hat, and Ope...