Search CVE reports

Toggle filters

21 – 22 of 22 results

CVE-2014-3422

Medium priority
Ignored

lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.

7 affected packages

emacs-snapshot, emacs22, emacs23, emacs24, emacs25...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
emacs-snapshot Not in release Not in release
emacs22 Not in release Not in release
emacs23 Not in release Not in release
emacs24 Not in release Not affected
emacs25 Not affected Not in release
xemacs21 Not affected Not affected
xemacs21-packages Not affected Not affected
Show all 7 packages Show less packages

CVE-2014-3421

Medium priority
Vulnerable

lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.

7 affected packages

emacs-snapshot, emacs22, emacs23, emacs24, emacs25...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
emacs-snapshot Not in release Not in release Not in release Not in release Not in release
emacs22 Not in release Not in release Not in release Not in release Not in release
emacs23 Not in release Not in release Not in release Not in release Not in release
emacs24 Not in release Not in release Not in release Not in release Not affected
emacs25 Not in release Not in release Not in release Not affected Not in release
xemacs21 Not affected Not affected Not affected Not affected Not affected
xemacs21-packages Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show all 7 packages Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. Next page
Export to JSON