lisp/net/tramp-sh.el in GNU Emacs 24.3 and previous versions allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mageia project mageia 4 |
||
mageia project mageia 3 |
||
gnu emacs 21.3.1 |
||
gnu emacs 21.4 |
||
gnu emacs 22.1 |
||
gnu emacs 22.2 |
||
gnu emacs 20.5 |
||
gnu emacs 20.1 |
||
gnu emacs 20.3 |
||
gnu emacs 21.2 |
||
gnu emacs 21.3 |
||
gnu emacs 22.3 |
||
gnu emacs 23.2 |
||
gnu emacs 20.6 |
||
gnu emacs 20.7 |
||
gnu emacs 21 |
||
gnu emacs 23.4 |
||
gnu emacs 24.1 |
||
gnu emacs 24.2 |
||
gnu emacs |
||
gnu emacs 20.0 |
||
gnu emacs 20.2 |
||
gnu emacs 20.4 |
||
gnu emacs 21.1 |
||
gnu emacs 21.2.1 |
||
gnu emacs 23.1 |
||
gnu emacs 23.3 |