Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Ubuntu: Emacs vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Ubuntu: Emacs vulnerabilities
# 1  
Old 05-06-2008
Ubuntu: Emacs vulnerabilities
LinuxSecurity.com: It was discovered that Emacs did not account for precision when formatting integers. If a user were tricked into opening a specially crafted file, an attacker could cause a denial of service or possibly other unspecified actions. This issue does not affect Ubuntu 8.04. (CVE-2007-6109) Steve Grubb discovered that the vcdiff script as included in Emacs created temporary files in an insecure way when used with SCCS. Local users could exploit a race condition to create or overwrite files with the privileges of the user invoking the program. (CVE-2008-1694)

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Ubuntu

Emacs printing with Ubuntu 14.04 LTS

I am trying to setup a development environment that mirrors my Windows and SCO Unix systems. I use emacs and I am having trouble printing. I keep getting the error message; Symbol's function definition is void: default-printer-name I have googled this and for possible answers for... (0 Replies)
Discussion started by: trolley
0 Replies

2. UNIX for Dummies Questions & Answers

Ubuntu, emacs, vista help

Folks, I need some help! Please understand that I have searched and read tons of how-to's and other documents in researching this and getting Putty, Cygwin, and emacs running on the Vista machine. I have a Ubuntu headless server i am trying to configure as my gateway system for the house... (3 Replies)
Discussion started by: poundjd
3 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

bbdb-srv

BBDB-SRV.PL(1)						      General Commands Manual						    BBDB-SRV.PL(1)

NAME

       bbdb-srv - Converts Mail-Headers to an Emacs-Lisp String.

SYNOPSIS

       echo Some Headers | bbdb-srv

DESCRIPTION

       This  script  reads  a block of message headers on stdin, and converts them to an emacs-lisp string (quoting  all dangerous characters) and
       then uses the `gnudoit' program to cause a running Emacs process to invoke the `bbdb-srv' function with that string.

       This has the effect of causing the running Emacs to display the BBDB record corresponding to these headers.

       See the Emacs side of things in bbdb-srv.el for more info.

       A trivial application of this is the shell command:

	  echo 'From: Jamie Zawinski <jwz@netscape.com>' | bbdb-srv.perl

       which will cause the corresponding record to be displayed.  A more interesting application of this is:

	  setenv NS_MSG_DISPLAY_HOOK bbdb-srv.perl

       which will hook BBDB up to Mozilla (Unix Netscape Mail and Netscape News versions 3.0b2 and later only.)

       This manual page was written for the Debian distribution because the original program does not have a manual page.  Instead, it	has  docu-
       mentation in the GNU Info format; see below.

SEE ALSO

       bbdb-areacode-split(1), bbdb-unlazy-lock(1).  bbdb-srv(1).
       The bbdb is fully documented by The insidious Big Brother Database for mail and news, available via the Infonode bbdb

AUTHOR

       This  manual  page  was	written by Joerg Jaspert (JJ) <joerg@goliathbbs.dnsalias.net>, for the Debian GNU/Linux system (but may be used by
       others).

								  March 31, 2002						    BBDB-SRV.PL(1)