Description
lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.
References (5)
Core 5
Core References
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2014/05/07/7
Various Sources mailing-list
x_refsource_mlist
http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00055.html
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:117
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0250.html
Various Sources x_refsource_confirm
http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8
Scores
EPSS
0.0012
EPSS Percentile
30.0%
Details
CWE
CWE-59
Status
published
Products (27)
gnu/emacs
20.0
gnu/emacs
20.1
gnu/emacs
20.2
gnu/emacs
20.3
gnu/emacs
20.4
gnu/emacs
20.5
gnu/emacs
20.6
gnu/emacs
20.7
gnu/emacs
21
gnu/emacs
21.1
... and 17 more
Published
May 08, 2014
Tracked Since
Feb 18, 2026