Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-3424 (GCVE-0-2014-3424)
Vulnerability from cvelistv5 – Published: 2014-05-08 10:00 – Updated: 2024-08-06 10:43
VLAI?
EPSS
Summary
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T10:43:05.773Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"name": "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"name": "MDVSA-2015:117",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-05-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2015-04-08T13:57:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"name": "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"name": "MDVSA-2015:117",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-3424",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"name": "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.",
"refsource": "MLIST",
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"name": "MDVSA-2015:117",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0250.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"name": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8",
"refsource": "CONFIRM",
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2014-3424",
"datePublished": "2014-05-08T10:00:00",
"dateReserved": "2014-05-07T00:00:00",
"dateUpdated": "2024-08-06T10:43:05.773Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"24.3\", \"matchCriteriaId\": \"4BAE0411-D27E-49B6-8F8B-972A2E9985FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EB2E29F-371A-43AB-8CBF-DDFABDB103BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05F6124D-F3C1-4E4C-B580-85AB01833885\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9571E866-AB82-4B95-8097-ED0DA038331F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A773690-9650-40E1-BCE3-7E020AF61BCD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"26D9A554-CB40-461D-9C95-78051B0CA354\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7731A395-328A-4435-A388-1419224A4256\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05BDDB87-0AFF-4BDC-995A-94F221ED3641\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4389884-70D2-4915-80A7-CFA4A420A024\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA95B19B-F35D-4644-9E75-5A138A960C10\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC7E9FE5-E87C-440B-A16E-327501BC8977\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9ADF55EE-0F79-414A-B701-14DDA1C9C3B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37E5A757-C2C8-49D4-AFCD-156CCF4B7262\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1D047EC-2354-430D-B44C-FE8574F7617B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99B66AEA-D831-4A17-A7D6-4DEDA28985C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"944A2F7B-375B-4466-8A98-934123C209FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"123EF408-7950-4856-8A8D-B5553A0FFF58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9948287-D8A4-4B29-9240-FCD25E73B00D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECC26DAB-A671-47BE-84DD-AD0A4CF72079\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38737529-7787-45AD-81FB-8571789BAEDB\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.\"}, {\"lang\": \"es\", \"value\": \"lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a trav\\u00e9s de un ataque de enlace simb\\u00f3lico sobre un archivo /tmp/tramp.##### temporal.\"}]",
"id": "CVE-2014-3424",
"lastModified": "2024-11-21T02:08:03.957",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:N/I:P/A:P\", \"baseScore\": 3.3, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.4, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2014-05-08T10:55:05.577",
"references": "[{\"url\": \"http://advisories.mageia.org/MGASA-2014-0250.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/05/07/7\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://advisories.mageia.org/MGASA-2014-0250.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/05/07/7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-59\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2014-3424\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-05-08T10:55:05.577\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.\"},{\"lang\":\"es\",\"value\":\"lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a trav\u00e9s de un ataque de enlace simb\u00f3lico sobre un archivo /tmp/tramp.##### temporal.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:N/I:P/A:P\",\"baseScore\":3.3,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.4,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"24.3\",\"matchCriteriaId\":\"4BAE0411-D27E-49B6-8F8B-972A2E9985FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EB2E29F-371A-43AB-8CBF-DDFABDB103BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05F6124D-F3C1-4E4C-B580-85AB01833885\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9571E866-AB82-4B95-8097-ED0DA038331F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A773690-9650-40E1-BCE3-7E020AF61BCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26D9A554-CB40-461D-9C95-78051B0CA354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7731A395-328A-4435-A388-1419224A4256\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05BDDB87-0AFF-4BDC-995A-94F221ED3641\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4389884-70D2-4915-80A7-CFA4A420A024\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA95B19B-F35D-4644-9E75-5A138A960C10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC7E9FE5-E87C-440B-A16E-327501BC8977\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ADF55EE-0F79-414A-B701-14DDA1C9C3B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37E5A757-C2C8-49D4-AFCD-156CCF4B7262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1D047EC-2354-430D-B44C-FE8574F7617B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99B66AEA-D831-4A17-A7D6-4DEDA28985C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"944A2F7B-375B-4466-8A98-934123C209FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"123EF408-7950-4856-8A8D-B5553A0FFF58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9948287-D8A4-4B29-9240-FCD25E73B00D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECC26DAB-A671-47BE-84DD-AD0A4CF72079\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38737529-7787-45AD-81FB-8571789BAEDB\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2014-0250.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/05/07/7\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://advisories.mageia.org/MGASA-2014-0250.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/05/07/7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
SUSE-SU-2015:0834-1
Vulnerability from csaf_suse - Published: 2015-03-23 16:13 - Updated: 2015-03-23 16:13Summary
Security update for emacs
Notes
Title of the patch
Security update for emacs
Description of the patch
Emacs has been updated to fix the following issues:
* Several cases of insecure usage of temporary files. (CVE-2014-3421,
CVE-2014-3422, CVE-2014-3423, CVE-2014-3424)
* Use of vc-annotate for renamed files when using Git. (bnc#854683)
Security Issues:
* CVE-2014-3421
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3421>
* CVE-2014-3422
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3422>
* CVE-2014-3423
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3423>
* CVE-2014-3424
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3424>
Patchnames
sdksp3-emacs,sledsp3-emacs,slessp3-emacs
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for emacs",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nEmacs has been updated to fix the following issues:\n\n * Several cases of insecure usage of temporary files. (CVE-2014-3421,\n CVE-2014-3422, CVE-2014-3423, CVE-2014-3424)\n * Use of vc-annotate for renamed files when using Git. (bnc#854683)\n\nSecurity Issues:\n\n * CVE-2014-3421\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3421\u003e\n * CVE-2014-3422\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3422\u003e\n * CVE-2014-3423\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3423\u003e\n * CVE-2014-3424\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3424\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp3-emacs,sledsp3-emacs,slessp3-emacs",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0834-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0834-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150834-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0834-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001372.html"
},
{
"category": "self",
"summary": "SUSE Bug 854683",
"url": "https://bugzilla.suse.com/854683"
},
{
"category": "self",
"summary": "SUSE Bug 876847",
"url": "https://bugzilla.suse.com/876847"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3421 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3421/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3422 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3423 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3424 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3424/"
}
],
"title": "Security update for emacs",
"tracking": {
"current_release_date": "2015-03-23T16:13:36Z",
"generator": {
"date": "2015-03-23T16:13:36Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0834-1",
"initial_release_date": "2015-03-23T16:13:36Z",
"revision_history": [
{
"date": "2015-03-23T16:13:36Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "emacs-nox-22.3-4.42.1.i586",
"product": {
"name": "emacs-nox-22.3-4.42.1.i586",
"product_id": "emacs-nox-22.3-4.42.1.i586"
}
},
{
"category": "product_version",
"name": "emacs-22.3-4.42.1.i586",
"product": {
"name": "emacs-22.3-4.42.1.i586",
"product_id": "emacs-22.3-4.42.1.i586"
}
},
{
"category": "product_version",
"name": "emacs-info-22.3-4.42.1.i586",
"product": {
"name": "emacs-info-22.3-4.42.1.i586",
"product_id": "emacs-info-22.3-4.42.1.i586"
}
},
{
"category": "product_version",
"name": "emacs-x11-22.3-4.42.1.i586",
"product": {
"name": "emacs-x11-22.3-4.42.1.i586",
"product_id": "emacs-x11-22.3-4.42.1.i586"
}
},
{
"category": "product_version",
"name": "emacs-el-22.3-4.42.1.i586",
"product": {
"name": "emacs-el-22.3-4.42.1.i586",
"product_id": "emacs-el-22.3-4.42.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-22.3-4.42.1.ia64",
"product": {
"name": "emacs-22.3-4.42.1.ia64",
"product_id": "emacs-22.3-4.42.1.ia64"
}
},
{
"category": "product_version",
"name": "emacs-el-22.3-4.42.1.ia64",
"product": {
"name": "emacs-el-22.3-4.42.1.ia64",
"product_id": "emacs-el-22.3-4.42.1.ia64"
}
},
{
"category": "product_version",
"name": "emacs-info-22.3-4.42.1.ia64",
"product": {
"name": "emacs-info-22.3-4.42.1.ia64",
"product_id": "emacs-info-22.3-4.42.1.ia64"
}
},
{
"category": "product_version",
"name": "emacs-nox-22.3-4.42.1.ia64",
"product": {
"name": "emacs-nox-22.3-4.42.1.ia64",
"product_id": "emacs-nox-22.3-4.42.1.ia64"
}
},
{
"category": "product_version",
"name": "emacs-x11-22.3-4.42.1.ia64",
"product": {
"name": "emacs-x11-22.3-4.42.1.ia64",
"product_id": "emacs-x11-22.3-4.42.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-22.3-4.42.1.ppc64",
"product": {
"name": "emacs-22.3-4.42.1.ppc64",
"product_id": "emacs-22.3-4.42.1.ppc64"
}
},
{
"category": "product_version",
"name": "emacs-el-22.3-4.42.1.ppc64",
"product": {
"name": "emacs-el-22.3-4.42.1.ppc64",
"product_id": "emacs-el-22.3-4.42.1.ppc64"
}
},
{
"category": "product_version",
"name": "emacs-info-22.3-4.42.1.ppc64",
"product": {
"name": "emacs-info-22.3-4.42.1.ppc64",
"product_id": "emacs-info-22.3-4.42.1.ppc64"
}
},
{
"category": "product_version",
"name": "emacs-nox-22.3-4.42.1.ppc64",
"product": {
"name": "emacs-nox-22.3-4.42.1.ppc64",
"product_id": "emacs-nox-22.3-4.42.1.ppc64"
}
},
{
"category": "product_version",
"name": "emacs-x11-22.3-4.42.1.ppc64",
"product": {
"name": "emacs-x11-22.3-4.42.1.ppc64",
"product_id": "emacs-x11-22.3-4.42.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-22.3-4.42.1.s390x",
"product": {
"name": "emacs-22.3-4.42.1.s390x",
"product_id": "emacs-22.3-4.42.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-el-22.3-4.42.1.s390x",
"product": {
"name": "emacs-el-22.3-4.42.1.s390x",
"product_id": "emacs-el-22.3-4.42.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-info-22.3-4.42.1.s390x",
"product": {
"name": "emacs-info-22.3-4.42.1.s390x",
"product_id": "emacs-info-22.3-4.42.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-nox-22.3-4.42.1.s390x",
"product": {
"name": "emacs-nox-22.3-4.42.1.s390x",
"product_id": "emacs-nox-22.3-4.42.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-x11-22.3-4.42.1.s390x",
"product": {
"name": "emacs-x11-22.3-4.42.1.s390x",
"product_id": "emacs-x11-22.3-4.42.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-nox-22.3-4.42.1.x86_64",
"product": {
"name": "emacs-nox-22.3-4.42.1.x86_64",
"product_id": "emacs-nox-22.3-4.42.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-22.3-4.42.1.x86_64",
"product": {
"name": "emacs-22.3-4.42.1.x86_64",
"product_id": "emacs-22.3-4.42.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-info-22.3-4.42.1.x86_64",
"product": {
"name": "emacs-info-22.3-4.42.1.x86_64",
"product_id": "emacs-info-22.3-4.42.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-x11-22.3-4.42.1.x86_64",
"product": {
"name": "emacs-x11-22.3-4.42.1.x86_64",
"product_id": "emacs-x11-22.3-4.42.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-el-22.3-4.42.1.x86_64",
"product": {
"name": "emacs-el-22.3-4.42.1.x86_64",
"product_id": "emacs-el-22.3-4.42.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586"
},
"product_reference": "emacs-nox-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-nox-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586"
},
"product_reference": "emacs-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586"
},
"product_reference": "emacs-info-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-info-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586"
},
"product_reference": "emacs-x11-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-x11-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586"
},
"product_reference": "emacs-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64"
},
"product_reference": "emacs-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x"
},
"product_reference": "emacs-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586"
},
"product_reference": "emacs-el-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64"
},
"product_reference": "emacs-el-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-el-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x"
},
"product_reference": "emacs-el-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-el-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586"
},
"product_reference": "emacs-info-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64"
},
"product_reference": "emacs-info-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-info-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x"
},
"product_reference": "emacs-info-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-info-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586"
},
"product_reference": "emacs-nox-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x"
},
"product_reference": "emacs-nox-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-nox-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586"
},
"product_reference": "emacs-x11-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x"
},
"product_reference": "emacs-x11-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-x11-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586"
},
"product_reference": "emacs-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64"
},
"product_reference": "emacs-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x"
},
"product_reference": "emacs-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586"
},
"product_reference": "emacs-el-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64"
},
"product_reference": "emacs-el-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-el-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x"
},
"product_reference": "emacs-el-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-el-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586"
},
"product_reference": "emacs-info-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64"
},
"product_reference": "emacs-info-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-info-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x"
},
"product_reference": "emacs-info-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-info-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586"
},
"product_reference": "emacs-nox-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x"
},
"product_reference": "emacs-nox-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-nox-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586"
},
"product_reference": "emacs-x11-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x"
},
"product_reference": "emacs-x11-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-x11-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586"
},
"product_reference": "emacs-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64"
},
"product_reference": "emacs-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x"
},
"product_reference": "emacs-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586"
},
"product_reference": "emacs-el-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64"
},
"product_reference": "emacs-el-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-el-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x"
},
"product_reference": "emacs-el-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-el-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586"
},
"product_reference": "emacs-info-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64"
},
"product_reference": "emacs-info-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-info-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x"
},
"product_reference": "emacs-info-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-info-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586"
},
"product_reference": "emacs-nox-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-nox-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x"
},
"product_reference": "emacs-nox-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-nox-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586"
},
"product_reference": "emacs-x11-22.3-4.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64"
},
"product_reference": "emacs-x11-22.3-4.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x"
},
"product_reference": "emacs-x11-22.3-4.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64"
},
"product_reference": "emacs-x11-22.3-4.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3421"
}
],
"notes": [
{
"category": "general",
"text": "lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3421",
"url": "https://www.suse.com/security/cve/CVE-2014-3421"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3421",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-23T16:13:36Z",
"details": "moderate"
}
],
"title": "CVE-2014-3421"
},
{
"cve": "CVE-2014-3422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3422"
}
],
"notes": [
{
"category": "general",
"text": "lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3422",
"url": "https://www.suse.com/security/cve/CVE-2014-3422"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3422",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-23T16:13:36Z",
"details": "moderate"
}
],
"title": "CVE-2014-3422"
},
{
"cve": "CVE-2014-3423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3423"
}
],
"notes": [
{
"category": "general",
"text": "lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3423",
"url": "https://www.suse.com/security/cve/CVE-2014-3423"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3423",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-23T16:13:36Z",
"details": "moderate"
}
],
"title": "CVE-2014-3423"
},
{
"cve": "CVE-2014-3424",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3424"
}
],
"notes": [
{
"category": "general",
"text": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3424",
"url": "https://www.suse.com/security/cve/CVE-2014-3424"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3424",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-23T16:13:36Z",
"details": "moderate"
}
],
"title": "CVE-2014-3424"
}
]
}
GSD-2014-3424
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2014-3424",
"description": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.",
"id": "GSD-2014-3424",
"references": [
"https://www.suse.com/security/cve/CVE-2014-3424.html",
"https://advisories.mageia.org/CVE-2014-3424.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2014-3424"
],
"details": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.",
"id": "GSD-2014-3424",
"modified": "2023-12-13T01:22:53.882826Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-3424",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"name": "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.",
"refsource": "MLIST",
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"name": "MDVSA-2015:117",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0250.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"name": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8",
"refsource": "CONFIRM",
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "24.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-3424"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.",
"refsource": "MLIST",
"tags": [],
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"name": "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs",
"refsource": "MLIST",
"tags": [],
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"name": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8",
"refsource": "CONFIRM",
"tags": [],
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0250.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"name": "MDVSA-2015:117",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2016-06-30T16:25Z",
"publishedDate": "2014-05-08T10:55Z"
}
}
}
OPENSUSE-SU-2024:10469-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
emacs-25.1-1.1 on GA media
Notes
Title of the patch
emacs-25.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the emacs-25.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10469
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "emacs-25.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the emacs-25.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10469",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10469-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0035 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3421 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3421/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3422 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3423 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3424 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3424/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9483 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9483/"
}
],
"title": "emacs-25.1-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10469-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "emacs-25.1-1.1.aarch64",
"product": {
"name": "emacs-25.1-1.1.aarch64",
"product_id": "emacs-25.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "emacs-el-25.1-1.1.aarch64",
"product": {
"name": "emacs-el-25.1-1.1.aarch64",
"product_id": "emacs-el-25.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "emacs-info-25.1-1.1.aarch64",
"product": {
"name": "emacs-info-25.1-1.1.aarch64",
"product_id": "emacs-info-25.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "emacs-nox-25.1-1.1.aarch64",
"product": {
"name": "emacs-nox-25.1-1.1.aarch64",
"product_id": "emacs-nox-25.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "emacs-x11-25.1-1.1.aarch64",
"product": {
"name": "emacs-x11-25.1-1.1.aarch64",
"product_id": "emacs-x11-25.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "etags-25.1-1.1.aarch64",
"product": {
"name": "etags-25.1-1.1.aarch64",
"product_id": "etags-25.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-25.1-1.1.ppc64le",
"product": {
"name": "emacs-25.1-1.1.ppc64le",
"product_id": "emacs-25.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "emacs-el-25.1-1.1.ppc64le",
"product": {
"name": "emacs-el-25.1-1.1.ppc64le",
"product_id": "emacs-el-25.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "emacs-info-25.1-1.1.ppc64le",
"product": {
"name": "emacs-info-25.1-1.1.ppc64le",
"product_id": "emacs-info-25.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "emacs-nox-25.1-1.1.ppc64le",
"product": {
"name": "emacs-nox-25.1-1.1.ppc64le",
"product_id": "emacs-nox-25.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "emacs-x11-25.1-1.1.ppc64le",
"product": {
"name": "emacs-x11-25.1-1.1.ppc64le",
"product_id": "emacs-x11-25.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "etags-25.1-1.1.ppc64le",
"product": {
"name": "etags-25.1-1.1.ppc64le",
"product_id": "etags-25.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-25.1-1.1.s390x",
"product": {
"name": "emacs-25.1-1.1.s390x",
"product_id": "emacs-25.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-el-25.1-1.1.s390x",
"product": {
"name": "emacs-el-25.1-1.1.s390x",
"product_id": "emacs-el-25.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-info-25.1-1.1.s390x",
"product": {
"name": "emacs-info-25.1-1.1.s390x",
"product_id": "emacs-info-25.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-nox-25.1-1.1.s390x",
"product": {
"name": "emacs-nox-25.1-1.1.s390x",
"product_id": "emacs-nox-25.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "emacs-x11-25.1-1.1.s390x",
"product": {
"name": "emacs-x11-25.1-1.1.s390x",
"product_id": "emacs-x11-25.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "etags-25.1-1.1.s390x",
"product": {
"name": "etags-25.1-1.1.s390x",
"product_id": "etags-25.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "emacs-25.1-1.1.x86_64",
"product": {
"name": "emacs-25.1-1.1.x86_64",
"product_id": "emacs-25.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-el-25.1-1.1.x86_64",
"product": {
"name": "emacs-el-25.1-1.1.x86_64",
"product_id": "emacs-el-25.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-info-25.1-1.1.x86_64",
"product": {
"name": "emacs-info-25.1-1.1.x86_64",
"product_id": "emacs-info-25.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-nox-25.1-1.1.x86_64",
"product": {
"name": "emacs-nox-25.1-1.1.x86_64",
"product_id": "emacs-nox-25.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "emacs-x11-25.1-1.1.x86_64",
"product": {
"name": "emacs-x11-25.1-1.1.x86_64",
"product_id": "emacs-x11-25.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "etags-25.1-1.1.x86_64",
"product": {
"name": "etags-25.1-1.1.x86_64",
"product_id": "etags-25.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64"
},
"product_reference": "emacs-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le"
},
"product_reference": "emacs-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-25.1-1.1.s390x"
},
"product_reference": "emacs-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64"
},
"product_reference": "emacs-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64"
},
"product_reference": "emacs-el-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le"
},
"product_reference": "emacs-el-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x"
},
"product_reference": "emacs-el-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-el-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64"
},
"product_reference": "emacs-el-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64"
},
"product_reference": "emacs-info-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le"
},
"product_reference": "emacs-info-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x"
},
"product_reference": "emacs-info-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-info-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64"
},
"product_reference": "emacs-info-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64"
},
"product_reference": "emacs-nox-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le"
},
"product_reference": "emacs-nox-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x"
},
"product_reference": "emacs-nox-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-nox-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64"
},
"product_reference": "emacs-nox-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64"
},
"product_reference": "emacs-x11-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le"
},
"product_reference": "emacs-x11-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x"
},
"product_reference": "emacs-x11-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-x11-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64"
},
"product_reference": "emacs-x11-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "etags-25.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:etags-25.1-1.1.aarch64"
},
"product_reference": "etags-25.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "etags-25.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le"
},
"product_reference": "etags-25.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "etags-25.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:etags-25.1-1.1.s390x"
},
"product_reference": "etags-25.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "etags-25.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
},
"product_reference": "etags-25.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-0035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0035"
}
],
"notes": [
{
"category": "general",
"text": "Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent directory, of an opened file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0035",
"url": "https://www.suse.com/security/cve/CVE-2012-0035"
},
{
"category": "external",
"summary": "SUSE Bug 740447 for CVE-2012-0035",
"url": "https://bugzilla.suse.com/740447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2012-0035"
},
{
"cve": "CVE-2014-3421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3421"
}
],
"notes": [
{
"category": "general",
"text": "lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3421",
"url": "https://www.suse.com/security/cve/CVE-2014-3421"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3421",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3421"
},
{
"cve": "CVE-2014-3422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3422"
}
],
"notes": [
{
"category": "general",
"text": "lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3422",
"url": "https://www.suse.com/security/cve/CVE-2014-3422"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3422",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3422"
},
{
"cve": "CVE-2014-3423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3423"
}
],
"notes": [
{
"category": "general",
"text": "lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3423",
"url": "https://www.suse.com/security/cve/CVE-2014-3423"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3423",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3423"
},
{
"cve": "CVE-2014-3424",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3424"
}
],
"notes": [
{
"category": "general",
"text": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3424",
"url": "https://www.suse.com/security/cve/CVE-2014-3424"
},
{
"category": "external",
"summary": "SUSE Bug 876847 for CVE-2014-3424",
"url": "https://bugzilla.suse.com/876847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3424"
},
{
"cve": "CVE-2014-9483",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9483"
}
],
"notes": [
{
"category": "general",
"text": "Emacs 24.4 allows remote attackers to bypass security restrictions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9483",
"url": "https://www.suse.com/security/cve/CVE-2014-9483"
},
{
"category": "external",
"summary": "SUSE Bug 912872 for CVE-2014-9483",
"url": "https://bugzilla.suse.com/912872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:emacs-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x",
"openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64",
"openSUSE Tumbleweed:etags-25.1-1.1.aarch64",
"openSUSE Tumbleweed:etags-25.1-1.1.ppc64le",
"openSUSE Tumbleweed:etags-25.1-1.1.s390x",
"openSUSE Tumbleweed:etags-25.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-9483"
}
]
}
GHSA-QQ7H-M7F5-5CH5
Vulnerability from github – Published: 2022-05-17 03:52 – Updated: 2022-05-17 03:52
VLAI?
Details
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
{
"affected": [],
"aliases": [
"CVE-2014-3424"
],
"database_specific": {
"cwe_ids": [
"CWE-59"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2014-05-08T10:55:00Z",
"severity": "LOW"
},
"details": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.",
"id": "GHSA-qq7h-m7f5-5ch5",
"modified": "2022-05-17T03:52:14Z",
"published": "2022-05-17T03:52:14Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3424"
},
{
"type": "WEB",
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"type": "WEB",
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
},
{
"type": "WEB",
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"type": "WEB",
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
}
],
"schema_version": "1.4.0",
"severity": []
}
FKIE_CVE-2014-3424
Vulnerability from fkie_nvd - Published: 2014-05-08 10:55 - Updated: 2025-04-12 10:46
Severity ?
Summary
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mageia_project | mageia | 3 | |
| mageia_project | mageia | 4 | |
| gnu | emacs | * | |
| gnu | emacs | 20.0 | |
| gnu | emacs | 20.1 | |
| gnu | emacs | 20.2 | |
| gnu | emacs | 20.3 | |
| gnu | emacs | 20.4 | |
| gnu | emacs | 20.5 | |
| gnu | emacs | 20.6 | |
| gnu | emacs | 20.7 | |
| gnu | emacs | 21 | |
| gnu | emacs | 21.1 | |
| gnu | emacs | 21.2 | |
| gnu | emacs | 21.2.1 | |
| gnu | emacs | 21.3 | |
| gnu | emacs | 21.3.1 | |
| gnu | emacs | 21.4 | |
| gnu | emacs | 22.1 | |
| gnu | emacs | 22.2 | |
| gnu | emacs | 22.3 | |
| gnu | emacs | 23.1 | |
| gnu | emacs | 23.2 | |
| gnu | emacs | 23.3 | |
| gnu | emacs | 23.4 | |
| gnu | emacs | 24.1 | |
| gnu | emacs | 24.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*",
"matchCriteriaId": "F1911F9C-95A5-49DD-80F0-472BE92D7CDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*",
"matchCriteriaId": "EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4BAE0411-D27E-49B6-8F8B-972A2E9985FC",
"versionEndIncluding": "24.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*",
"matchCriteriaId": "4EB2E29F-371A-43AB-8CBF-DDFABDB103BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*",
"matchCriteriaId": "05F6124D-F3C1-4E4C-B580-85AB01833885",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9571E866-AB82-4B95-8097-ED0DA038331F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*",
"matchCriteriaId": "3A773690-9650-40E1-BCE3-7E020AF61BCD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*",
"matchCriteriaId": "26D9A554-CB40-461D-9C95-78051B0CA354",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*",
"matchCriteriaId": "0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*",
"matchCriteriaId": "7731A395-328A-4435-A388-1419224A4256",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*",
"matchCriteriaId": "05BDDB87-0AFF-4BDC-995A-94F221ED3641",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C4389884-70D2-4915-80A7-CFA4A420A024",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*",
"matchCriteriaId": "EA95B19B-F35D-4644-9E75-5A138A960C10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*",
"matchCriteriaId": "FC7E9FE5-E87C-440B-A16E-327501BC8977",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9ADF55EE-0F79-414A-B701-14DDA1C9C3B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*",
"matchCriteriaId": "37E5A757-C2C8-49D4-AFCD-156CCF4B7262",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F1D047EC-2354-430D-B44C-FE8574F7617B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*",
"matchCriteriaId": "99B66AEA-D831-4A17-A7D6-4DEDA28985C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*",
"matchCriteriaId": "944A2F7B-375B-4466-8A98-934123C209FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*",
"matchCriteriaId": "123EF408-7950-4856-8A8D-B5553A0FFF58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D9948287-D8A4-4B29-9240-FCD25E73B00D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*",
"matchCriteriaId": "ECC26DAB-A671-47BE-84DD-AD0A4CF72079",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*",
"matchCriteriaId": "38737529-7787-45AD-81FB-8571789BAEDB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file."
},
{
"lang": "es",
"value": "lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a trav\u00e9s de un ataque de enlace simb\u00f3lico sobre un archivo /tmp/tramp.##### temporal."
}
],
"id": "CVE-2014-3424",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-05-08T10:55:05.577",
"references": [
{
"source": "cve@mitre.org",
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"source": "cve@mitre.org",
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
},
{
"source": "cve@mitre.org",
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"source": "cve@mitre.org",
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://advisories.mageia.org/MGASA-2014-0250.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://openwall.com/lists/oss-security/2014/05/07/7"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…