Oval Definition:
oval:com.ubuntu.precise:def:20143424000
Revision Date
:
2014-05-08
Version
:
1
Title
:
CVE-2014-3424 on Ubuntu 12.04 LTS (precise) - medium.
Description
:
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2014-3424
Platform(s)
:
Ubuntu 12.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed.
AND
Package Information
The 'emacs23' package in precise is affected and needs fixing.
OR
NOT
While related to the CVE in some way, the 'xemacs21' package in precise is not affected (note: 'code-not-present').
OR
The 'xemacs21-packages' package in precise is affected and needs fixing.
BACK