Oval Definition:
oval:com.ubuntu.artful:def:20143421000
Revision Date
:
2014-05-08
Version
:
1
Title
:
CVE-2014-3421 on Ubuntu 17.10 (artful) - medium.
Description
:
lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2014-3421
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
Package Information
NOT
While related to the CVE in some way, the 'emacs25' package in artful is not affected.
OR
NOT
While related to the CVE in some way, the 'xemacs21' package in artful is not affected (note: 'code-not-present').
OR
The 'xemacs21-packages' package in artful is affected and needs fixing.
BACK