GNU : Security Vulnerabilities, CVEs, Published In May 2014

CVE-2014-3424

lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Max CVSS
3.3
EPSS Score
0.04%
Published
2014-05-08
Updated
2016-06-30

CVE-2014-3423

lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.
Max CVSS
3.3
EPSS Score
0.04%
Published
2014-05-08
Updated
2016-06-30

CVE-2014-3422

lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.
Max CVSS
3.3
EPSS Score
0.04%
Published
2014-05-08
Updated
2016-06-30

CVE-2014-3421

lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.
Max CVSS
3.3
EPSS Score
0.04%
Published
2014-05-08
Updated
2016-06-30

CVE-2013-6889

GNU Rush 1.7 does not properly drop privileges, which allows local users to read arbitrary files via the --lint option.
Max CVSS
4.9
EPSS Score
0.04%
Published
2014-05-08
Updated
2014-05-09

CVE-2013-4577

A certain Debian patch for GNU GRUB uses world-readable permissions for grub.cfg, which allows local users to obtain password hashes, as demonstrated by reading the password_pbkdf2 directive in the file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2014-05-12
Updated
2024-01-16
6 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close