14 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-3422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under...
EulerOS 2.0 SP3 : emacs (EulerOS-SA-2022-1714)
According to the versions of the emacs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.pp...
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2022-1528)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2014-0250)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0834-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Linux Security Advisory : emacs (MDVSA-2015:117)
Updated emacs packages fix security vulnerabilities : Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform symbolic link attacks against users running Emacs CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424. %NASLMINLEV...
SUSE-SU-2015:0834-1 Security update for emacs
Emacs has been updated to fix the following issues: Several cases of insecure usage of temporary files. CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424 Use of vc-annotate for renamed files when using Git. bnc854683 Security Issues: CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-342...
openSUSE Security Update : emacs (openSUSE-SU-2014:1460-1)
emacs was updated to fix four security issues. These security issues were fixed : - Avoid unsecure usage of temporary files CVE-2014-3421. - Avoid unsecure usage of temporary files CVE-2014-3422. - Avoid unsecure usage of temporary files CVE-2014-3423. - Avoid unsecure usage of temporary files...
Updated emacs packages fix CVE-2014-3421-4
Updated emacs packages fix security vulnerabilities: Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform symbolic link attacks against users running Emacs CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424...
Fedora Update for emacs FEDORA-2014-6554
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : emacs-24.3-17.fc20 (2014-6554)
CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 1095587 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
CVE-2014-3422
lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/...
CVE-2014-3422
CVE-2014-3422 affects GNU Emacs 24.3 and earlier. The vulnerability allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/. Public documents (OpenVAS/Nessus/EulerOS advisories) confirm the existence and nature of the issue but do not specify a ve...
KLA10169 WLF vulnerability in Emacs
An unspecified vulnerability was found in GNU Emacs. By exploiting this vulnerability malicious users can overwrite arbitrary tmp files. This vulnerability can be exploited locally via a symlink attack. Original advisories - Related products GNU-Emacs CVE list CVE-2014-3424 warning CVE-2014-3423...