EUVD-2007-5355

Malware in sbrugna...

Malicious code in test-mlw2-halve-tramp (npm)

The package test-mlw2-halve-tramp was found to contain malicious code...

MAL-2025-35483 Malicious code in test-mlw2-halve-tramp (npm)

The package test-mlw2-halve-tramp was found to contain malicious code...

emacs: Org mode considers contents of remote files to be trusted

A flaw was found in Emacs. Org mode considers the content of remote files, such as files opened with TRAMP on remote systems, to be trusted, resulting in arbitrary code execution...

CVE-2024-30205

A flaw was found in Emacs. Org mode considers the content of remote files, such as files opened with TRAMP on remote systems, to be trusted, resulting in arbitrary code execution. Mitigation Do not open untrusted Org mode files from a remote system...

SUSE CVE-2007-5377

The 1 tramp-make-temp-file and 2 tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

SUSE CVE-2014-3424

lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp. temporary file...

UBUNTU-CVE-2014-3424

lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp. temporary file...

Gentoo Security Advisory GLSA 200710-22 (tramp)

The remote host is missing updates announced in advisory GLSA 200710-22. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200710-22 (tramp)

The remote host is missing updates announced in advisory GLSA 200710-22. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

GLSA-200710-22 : TRAMP: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200710-22 TRAMP: Insecure temporary file creation Stefan Monnier discovered that the tramp-make-tramp-temp-file function creates temporary files in an insecure manner. Impact : A local attacker could create symbolic links in the...

CVE-2007-5377

The 1 tramp-make-temp-file and 2 tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2007-5377

The 1 tramp-make-temp-file and 2 tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

Code injection

The 1 tramp-make-temp-file and 2 tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2007-5377

The CVE concerns TRAMP (Emacs extension) specifically tramp-make-temp-file and tramp-make-tramp-temp-file in TRAMP 2.1.10 (and possibly earlier 2.1.x). The described flaw is insecure temporary file creation that enables a local attacker to exploit a symlink to overwrite arbitrary files within the...

CVE-2007-5377

The 1 tramp-make-temp-file and 2 tramp-make-tramp-temp-file functions in Tramp 2.1.10 extension for Emacs, and possibly earlier 2.1.x versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files...