Vulnerabilities > GNU > Emacs > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-10-31 | CVE-2017-1000383 | Information Exposure vulnerability in GNU Emacs GNU Emacs version 25.3.1 (and other versions most likely) ignores umask when creating a backup save file ("[ORIGINAL_FILENAME]~") resulting in files that may be world readable or otherwise accessible in ways not intended by the user running the emacs binary. | 2.1 |
2014-05-08 | CVE-2014-3421 | Link Following vulnerability in multiple products lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file. | 3.3 |
2014-05-08 | CVE-2014-3422 | Link Following vulnerability in multiple products lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/. | 3.3 |
2014-05-08 | CVE-2014-3423 | Link Following vulnerability in multiple products lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file. | 3.3 |
2014-05-08 | CVE-2014-3424 | Link Following vulnerability in multiple products lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file. | 3.3 |
2001-08-07 | CVE-2001-1301 | Local Security vulnerability in Xemacs rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file. | 1.2 |