13 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-3423
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic. temporary file...
Mageia: Security Advisory (MGASA-2014-0250)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0834-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Linux Security Advisory : emacs (MDVSA-2015:117)
Updated emacs packages fix security vulnerabilities : Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform symbolic link attacks against users running Emacs CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424. %NASLMINLEV...
SUSE-SU-2015:0834-1 Security update for emacs
Emacs has been updated to fix the following issues: Several cases of insecure usage of temporary files. CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424 Use of vc-annotate for renamed files when using Git. bnc854683 Security Issues: CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-342...
openSUSE Security Update : emacs (openSUSE-SU-2014:1460-1)
emacs was updated to fix four security issues. These security issues were fixed : - Avoid unsecure usage of temporary files CVE-2014-3421. - Avoid unsecure usage of temporary files CVE-2014-3422. - Avoid unsecure usage of temporary files CVE-2014-3423. - Avoid unsecure usage of temporary files...
Updated emacs packages fix CVE-2014-3421-4
Updated emacs packages fix security vulnerabilities: Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform symbolic link attacks against users running Emacs CVE-2014-3421, CVE-2014-3422, CVE-2014-3423, CVE-2014-3424...
Fedora Update for emacs FEDORA-2014-6554
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : emacs-24.3-17.fc20 (2014-6554)
CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 1095587 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
CVE-2014-3423
lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic. temporary file...
CVE-2014-3423
lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic. temporary file...
CVE-2014-3423
CVE-2014-3423 affects GNU Emacs 24.3 and earlier, where lisp/net/browse-url.el allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic temporary file. The connected sources confirm this local-privilege issue and describe the exact path and file involved, but do not p...
KLA10169 WLF vulnerability in Emacs
An unspecified vulnerability was found in GNU Emacs. By exploiting this vulnerability malicious users can overwrite arbitrary tmp files. This vulnerability can be exploited locally via a symlink attack. Original advisories - Related products GNU-Emacs CVE list CVE-2014-3424 warning CVE-2014-3423...