Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-3424 (GCVE-0-2014-3424)
Vulnerability from cvelistv5
Published
2014-05-08 10:00
Modified
2024-08-06 10:43
Severity ?
EPSS score ?
Summary
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T10:43:05.773Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { name: "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { name: "MDVSA-2015:117", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2014-05-06T00:00:00", descriptions: [ { lang: "en", value: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2015-04-08T13:57:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { name: "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { name: "MDVSA-2015:117", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2014-3424", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs", refsource: "MLIST", url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { name: "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.", refsource: "MLIST", url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { name: "MDVSA-2015:117", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, { name: "http://advisories.mageia.org/MGASA-2014-0250.html", refsource: "CONFIRM", url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { name: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", refsource: "CONFIRM", url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2014-3424", datePublished: "2014-05-08T10:00:00", dateReserved: "2014-05-07T00:00:00", dateUpdated: "2024-08-06T10:43:05.773Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"24.3\", \"matchCriteriaId\": \"4BAE0411-D27E-49B6-8F8B-972A2E9985FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EB2E29F-371A-43AB-8CBF-DDFABDB103BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05F6124D-F3C1-4E4C-B580-85AB01833885\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9571E866-AB82-4B95-8097-ED0DA038331F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A773690-9650-40E1-BCE3-7E020AF61BCD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"26D9A554-CB40-461D-9C95-78051B0CA354\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7731A395-328A-4435-A388-1419224A4256\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05BDDB87-0AFF-4BDC-995A-94F221ED3641\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4389884-70D2-4915-80A7-CFA4A420A024\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA95B19B-F35D-4644-9E75-5A138A960C10\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC7E9FE5-E87C-440B-A16E-327501BC8977\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9ADF55EE-0F79-414A-B701-14DDA1C9C3B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37E5A757-C2C8-49D4-AFCD-156CCF4B7262\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1D047EC-2354-430D-B44C-FE8574F7617B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99B66AEA-D831-4A17-A7D6-4DEDA28985C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"944A2F7B-375B-4466-8A98-934123C209FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"123EF408-7950-4856-8A8D-B5553A0FFF58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9948287-D8A4-4B29-9240-FCD25E73B00D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECC26DAB-A671-47BE-84DD-AD0A4CF72079\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38737529-7787-45AD-81FB-8571789BAEDB\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.\"}, {\"lang\": \"es\", \"value\": \"lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a trav\\u00e9s de un ataque de enlace simb\\u00f3lico sobre un archivo /tmp/tramp.##### temporal.\"}]", id: "CVE-2014-3424", lastModified: "2024-11-21T02:08:03.957", metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:N/I:P/A:P\", \"baseScore\": 3.3, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.4, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2014-05-08T10:55:05.577", references: "[{\"url\": \"http://advisories.mageia.org/MGASA-2014-0250.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/05/07/7\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://advisories.mageia.org/MGASA-2014-0250.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/05/07/7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]", sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-59\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2014-3424\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-05-08T10:55:05.577\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.\"},{\"lang\":\"es\",\"value\":\"lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a través de un ataque de enlace simbólico sobre un archivo /tmp/tramp.##### temporal.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:N/I:P/A:P\",\"baseScore\":3.3,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.4,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"24.3\",\"matchCriteriaId\":\"4BAE0411-D27E-49B6-8F8B-972A2E9985FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EB2E29F-371A-43AB-8CBF-DDFABDB103BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05F6124D-F3C1-4E4C-B580-85AB01833885\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9571E866-AB82-4B95-8097-ED0DA038331F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A773690-9650-40E1-BCE3-7E020AF61BCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26D9A554-CB40-461D-9C95-78051B0CA354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7731A395-328A-4435-A388-1419224A4256\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05BDDB87-0AFF-4BDC-995A-94F221ED3641\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4389884-70D2-4915-80A7-CFA4A420A024\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA95B19B-F35D-4644-9E75-5A138A960C10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC7E9FE5-E87C-440B-A16E-327501BC8977\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ADF55EE-0F79-414A-B701-14DDA1C9C3B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37E5A757-C2C8-49D4-AFCD-156CCF4B7262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1D047EC-2354-430D-B44C-FE8574F7617B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99B66AEA-D831-4A17-A7D6-4DEDA28985C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"944A2F7B-375B-4466-8A98-934123C209FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"123EF408-7950-4856-8A8D-B5553A0FFF58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9948287-D8A4-4B29-9240-FCD25E73B00D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECC26DAB-A671-47BE-84DD-AD0A4CF72079\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38737529-7787-45AD-81FB-8571789BAEDB\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2014-0250.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/05/07/7\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://advisories.mageia.org/MGASA-2014-0250.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/05/07/7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:117\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}", }, }
fkie_cve-2014-3424
Vulnerability from fkie_nvd
Published
2014-05-08 10:55
Modified
2025-04-12 10:46
Severity ?
Summary
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mageia_project | mageia | 3 | |
| mageia_project | mageia | 4 | |
| gnu | emacs | * | |
| gnu | emacs | 20.0 | |
| gnu | emacs | 20.1 | |
| gnu | emacs | 20.2 | |
| gnu | emacs | 20.3 | |
| gnu | emacs | 20.4 | |
| gnu | emacs | 20.5 | |
| gnu | emacs | 20.6 | |
| gnu | emacs | 20.7 | |
| gnu | emacs | 21 | |
| gnu | emacs | 21.1 | |
| gnu | emacs | 21.2 | |
| gnu | emacs | 21.2.1 | |
| gnu | emacs | 21.3 | |
| gnu | emacs | 21.3.1 | |
| gnu | emacs | 21.4 | |
| gnu | emacs | 22.1 | |
| gnu | emacs | 22.2 | |
| gnu | emacs | 22.3 | |
| gnu | emacs | 23.1 | |
| gnu | emacs | 23.2 | |
| gnu | emacs | 23.3 | |
| gnu | emacs | 23.4 | |
| gnu | emacs | 24.1 | |
| gnu | emacs | 24.2 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*", matchCriteriaId: "F1911F9C-95A5-49DD-80F0-472BE92D7CDA", vulnerable: true, }, { criteria: "cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*", matchCriteriaId: "EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*", matchCriteriaId: "4BAE0411-D27E-49B6-8F8B-972A2E9985FC", versionEndIncluding: "24.3", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*", matchCriteriaId: "E460F3A1-71DD-4A37-9F17-6B4E5C9A46AE", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*", matchCriteriaId: "0F9D5B3C-7534-4DC6-BE44-91A0031FBA6C", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*", matchCriteriaId: "4EB2E29F-371A-43AB-8CBF-DDFABDB103BB", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*", matchCriteriaId: "05F6124D-F3C1-4E4C-B580-85AB01833885", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*", matchCriteriaId: "9571E866-AB82-4B95-8097-ED0DA038331F", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*", matchCriteriaId: "3A773690-9650-40E1-BCE3-7E020AF61BCD", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*", matchCriteriaId: "26D9A554-CB40-461D-9C95-78051B0CA354", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*", matchCriteriaId: "0AFE5D6E-1979-4CF2-ACE0-BB6F31F80434", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*", matchCriteriaId: "7731A395-328A-4435-A388-1419224A4256", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*", matchCriteriaId: "05BDDB87-0AFF-4BDC-995A-94F221ED3641", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*", matchCriteriaId: "F9ADBEE6-3B38-4284-B9F8-37F7FFEBDE81", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*", matchCriteriaId: "C4389884-70D2-4915-80A7-CFA4A420A024", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*", matchCriteriaId: "EA95B19B-F35D-4644-9E75-5A138A960C10", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*", matchCriteriaId: "DE5CB6EB-74D8-4CA8-8B86-08E06859E2E4", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*", matchCriteriaId: "FC7E9FE5-E87C-440B-A16E-327501BC8977", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*", matchCriteriaId: "9ADF55EE-0F79-414A-B701-14DDA1C9C3B5", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*", matchCriteriaId: "37E5A757-C2C8-49D4-AFCD-156CCF4B7262", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*", matchCriteriaId: "F1D047EC-2354-430D-B44C-FE8574F7617B", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*", matchCriteriaId: "99B66AEA-D831-4A17-A7D6-4DEDA28985C2", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*", matchCriteriaId: "944A2F7B-375B-4466-8A98-934123C209FD", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*", matchCriteriaId: "123EF408-7950-4856-8A8D-B5553A0FFF58", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*", matchCriteriaId: "D9948287-D8A4-4B29-9240-FCD25E73B00D", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*", matchCriteriaId: "ECC26DAB-A671-47BE-84DD-AD0A4CF72079", vulnerable: true, }, { criteria: "cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*", matchCriteriaId: "38737529-7787-45AD-81FB-8571789BAEDB", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", }, { lang: "es", value: "lisp/net/tramp-sh.el en GNU Emacs 24.3 y anteriores permite a usuarios locales sobrescribir archivos arbitrarios a través de un ataque de enlace simbólico sobre un archivo /tmp/tramp.##### temporal.", }, ], id: "CVE-2014-3424", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 3.3, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:M/Au:N/C:N/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2014-05-08T10:55:05.577", references: [ { source: "cve@mitre.org", url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { source: "cve@mitre.org", url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, { source: "cve@mitre.org", url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { source: "cve@mitre.org", url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-59", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
opensuse-su-2024:10469-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
emacs-25.1-1.1 on GA media
Notes
Title of the patch
emacs-25.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the emacs-25.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10469
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "emacs-25.1-1.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the emacs-25.1-1.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-10469", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10469-1.json", }, { category: "self", summary: "SUSE CVE CVE-2012-0035 page", url: "https://www.suse.com/security/cve/CVE-2012-0035/", }, { category: "self", summary: "SUSE CVE CVE-2014-3421 page", url: "https://www.suse.com/security/cve/CVE-2014-3421/", }, { category: "self", summary: "SUSE CVE CVE-2014-3422 page", url: "https://www.suse.com/security/cve/CVE-2014-3422/", }, { category: "self", summary: "SUSE CVE CVE-2014-3423 page", url: "https://www.suse.com/security/cve/CVE-2014-3423/", }, { category: "self", summary: "SUSE CVE CVE-2014-3424 page", url: "https://www.suse.com/security/cve/CVE-2014-3424/", }, { category: "self", summary: "SUSE CVE CVE-2014-9483 page", url: "https://www.suse.com/security/cve/CVE-2014-9483/", }, ], title: "emacs-25.1-1.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:10469-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "emacs-25.1-1.1.aarch64", product: { name: "emacs-25.1-1.1.aarch64", product_id: "emacs-25.1-1.1.aarch64", }, }, { category: "product_version", name: "emacs-el-25.1-1.1.aarch64", product: { name: "emacs-el-25.1-1.1.aarch64", product_id: "emacs-el-25.1-1.1.aarch64", }, }, { category: "product_version", name: "emacs-info-25.1-1.1.aarch64", product: { name: "emacs-info-25.1-1.1.aarch64", product_id: "emacs-info-25.1-1.1.aarch64", }, }, { category: "product_version", name: "emacs-nox-25.1-1.1.aarch64", product: { name: "emacs-nox-25.1-1.1.aarch64", product_id: "emacs-nox-25.1-1.1.aarch64", }, }, { category: "product_version", name: "emacs-x11-25.1-1.1.aarch64", product: { name: "emacs-x11-25.1-1.1.aarch64", product_id: "emacs-x11-25.1-1.1.aarch64", }, }, { category: "product_version", name: "etags-25.1-1.1.aarch64", product: { name: "etags-25.1-1.1.aarch64", product_id: "etags-25.1-1.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "emacs-25.1-1.1.ppc64le", product: { name: "emacs-25.1-1.1.ppc64le", product_id: "emacs-25.1-1.1.ppc64le", }, }, { category: "product_version", name: "emacs-el-25.1-1.1.ppc64le", product: { name: "emacs-el-25.1-1.1.ppc64le", product_id: "emacs-el-25.1-1.1.ppc64le", }, }, { category: "product_version", name: "emacs-info-25.1-1.1.ppc64le", product: { name: "emacs-info-25.1-1.1.ppc64le", product_id: "emacs-info-25.1-1.1.ppc64le", }, }, { category: "product_version", name: "emacs-nox-25.1-1.1.ppc64le", product: { name: "emacs-nox-25.1-1.1.ppc64le", product_id: "emacs-nox-25.1-1.1.ppc64le", }, }, { category: "product_version", name: "emacs-x11-25.1-1.1.ppc64le", product: { name: "emacs-x11-25.1-1.1.ppc64le", product_id: "emacs-x11-25.1-1.1.ppc64le", }, }, { category: "product_version", name: "etags-25.1-1.1.ppc64le", product: { name: "etags-25.1-1.1.ppc64le", product_id: "etags-25.1-1.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "emacs-25.1-1.1.s390x", product: { name: "emacs-25.1-1.1.s390x", product_id: "emacs-25.1-1.1.s390x", }, }, { category: "product_version", name: "emacs-el-25.1-1.1.s390x", product: { name: "emacs-el-25.1-1.1.s390x", product_id: "emacs-el-25.1-1.1.s390x", }, }, { category: "product_version", name: "emacs-info-25.1-1.1.s390x", product: { name: "emacs-info-25.1-1.1.s390x", product_id: "emacs-info-25.1-1.1.s390x", }, }, { category: "product_version", name: "emacs-nox-25.1-1.1.s390x", product: { name: "emacs-nox-25.1-1.1.s390x", product_id: "emacs-nox-25.1-1.1.s390x", }, }, { category: "product_version", name: "emacs-x11-25.1-1.1.s390x", product: { name: "emacs-x11-25.1-1.1.s390x", product_id: "emacs-x11-25.1-1.1.s390x", }, }, { category: "product_version", name: "etags-25.1-1.1.s390x", product: { name: "etags-25.1-1.1.s390x", product_id: "etags-25.1-1.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "emacs-25.1-1.1.x86_64", product: { name: "emacs-25.1-1.1.x86_64", product_id: "emacs-25.1-1.1.x86_64", }, }, { category: "product_version", name: "emacs-el-25.1-1.1.x86_64", product: { name: "emacs-el-25.1-1.1.x86_64", product_id: "emacs-el-25.1-1.1.x86_64", }, }, { category: "product_version", name: "emacs-info-25.1-1.1.x86_64", product: { name: "emacs-info-25.1-1.1.x86_64", product_id: "emacs-info-25.1-1.1.x86_64", }, }, { category: "product_version", name: "emacs-nox-25.1-1.1.x86_64", product: { name: "emacs-nox-25.1-1.1.x86_64", product_id: "emacs-nox-25.1-1.1.x86_64", }, }, { category: "product_version", name: "emacs-x11-25.1-1.1.x86_64", product: { name: "emacs-x11-25.1-1.1.x86_64", product_id: "emacs-x11-25.1-1.1.x86_64", }, }, { category: "product_version", name: "etags-25.1-1.1.x86_64", product: { name: "etags-25.1-1.1.x86_64", product_id: "etags-25.1-1.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "emacs-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", }, product_reference: "emacs-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", }, product_reference: "emacs-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", }, product_reference: "emacs-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", }, product_reference: "emacs-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-el-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", }, product_reference: "emacs-el-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-el-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", }, product_reference: "emacs-el-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-el-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", }, product_reference: "emacs-el-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-el-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", }, product_reference: "emacs-el-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-info-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", }, product_reference: "emacs-info-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-info-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", }, product_reference: "emacs-info-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-info-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", }, product_reference: "emacs-info-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-info-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", }, product_reference: "emacs-info-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", }, product_reference: "emacs-nox-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", }, product_reference: "emacs-nox-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", }, product_reference: "emacs-nox-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", }, product_reference: "emacs-nox-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", }, product_reference: "emacs-x11-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", }, product_reference: "emacs-x11-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", }, product_reference: "emacs-x11-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", }, product_reference: "emacs-x11-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "etags-25.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", }, product_reference: "etags-25.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "etags-25.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", }, product_reference: "etags-25.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "etags-25.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:etags-25.1-1.1.s390x", }, product_reference: "etags-25.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "etags-25.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", }, product_reference: "etags-25.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2012-0035", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2012-0035", }, ], notes: [ { category: "general", text: "Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent directory, of an opened file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2012-0035", url: "https://www.suse.com/security/cve/CVE-2012-0035", }, { category: "external", summary: "SUSE Bug 740447 for CVE-2012-0035", url: "https://bugzilla.suse.com/740447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2012-0035", }, { cve: "CVE-2014-3421", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3421", }, ], notes: [ { category: "general", text: "lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3421", url: "https://www.suse.com/security/cve/CVE-2014-3421", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3421", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3421", }, { cve: "CVE-2014-3422", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3422", }, ], notes: [ { category: "general", text: "lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3422", url: "https://www.suse.com/security/cve/CVE-2014-3422", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3422", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3422", }, { cve: "CVE-2014-3423", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3423", }, ], notes: [ { category: "general", text: "lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3423", url: "https://www.suse.com/security/cve/CVE-2014-3423", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3423", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3423", }, { cve: "CVE-2014-3424", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3424", }, ], notes: [ { category: "general", text: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3424", url: "https://www.suse.com/security/cve/CVE-2014-3424", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3424", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3424", }, { cve: "CVE-2014-9483", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-9483", }, ], notes: [ { category: "general", text: "Emacs 24.4 allows remote attackers to bypass security restrictions.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-9483", url: "https://www.suse.com/security/cve/CVE-2014-9483", }, { category: "external", summary: "SUSE Bug 912872 for CVE-2014-9483", url: "https://bugzilla.suse.com/912872", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:emacs-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-el-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-el-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-el-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-info-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-info-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-info-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-nox-25.1-1.1.x86_64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.aarch64", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.ppc64le", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.s390x", "openSUSE Tumbleweed:emacs-x11-25.1-1.1.x86_64", "openSUSE Tumbleweed:etags-25.1-1.1.aarch64", "openSUSE Tumbleweed:etags-25.1-1.1.ppc64le", "openSUSE Tumbleweed:etags-25.1-1.1.s390x", "openSUSE Tumbleweed:etags-25.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-9483", }, ], }
ghsa-qq7h-m7f5-5ch5
Vulnerability from github
Published
2022-05-17 03:52
Modified
2022-05-17 03:52
Details
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
{ affected: [], aliases: [ "CVE-2014-3424", ], database_specific: { cwe_ids: [ "CWE-59", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2014-05-08T10:55:00Z", severity: "LOW", }, details: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", id: "GHSA-qq7h-m7f5-5ch5", modified: "2022-05-17T03:52:14Z", published: "2022-05-17T03:52:14Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2014-3424", }, { type: "WEB", url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { type: "WEB", url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, { type: "WEB", url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { type: "WEB", url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { type: "WEB", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, ], schema_version: "1.4.0", severity: [], }
gsd-2014-3424
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
Aliases
Aliases
{ GSD: { alias: "CVE-2014-3424", description: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", id: "GSD-2014-3424", references: [ "https://www.suse.com/security/cve/CVE-2014-3424.html", "https://advisories.mageia.org/CVE-2014-3424.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2014-3424", ], details: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", id: "GSD-2014-3424", modified: "2023-12-13T01:22:53.882826Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2014-3424", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs", refsource: "MLIST", url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { name: "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.", refsource: "MLIST", url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { name: "MDVSA-2015:117", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, { name: "http://advisories.mageia.org/MGASA-2014-0250.html", refsource: "CONFIRM", url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { name: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", refsource: "CONFIRM", url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.3.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:23.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.6:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.7:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:23.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:24.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:24.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "24.3", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:20.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:21.2.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:gnu:emacs:23.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2014-3424", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-59", }, ], }, ], }, references: { reference_data: [ { name: "[emacs-diffs] 20140506 emacs-24 r117071: Fix Bug#17415.", refsource: "MLIST", tags: [], url: "http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html", }, { name: "[oss-security] 20140507 Re: CVE Request - Predictable temporary filenames in GNU Emacs", refsource: "MLIST", tags: [], url: "http://openwall.com/lists/oss-security/2014/05/07/7", }, { name: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", refsource: "CONFIRM", tags: [], url: "http://debbugs.gnu.org/cgi/bugreport.cgi?bug=17428#8", }, { name: "http://advisories.mageia.org/MGASA-2014-0250.html", refsource: "CONFIRM", tags: [], url: "http://advisories.mageia.org/MGASA-2014-0250.html", }, { name: "MDVSA-2015:117", refsource: "MANDRIVA", tags: [], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2015:117", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 3.3, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:M/Au:N/C:N/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", userInteractionRequired: false, }, }, lastModifiedDate: "2016-06-30T16:25Z", publishedDate: "2014-05-08T10:55Z", }, }, }
suse-su-2015:0834-1
Vulnerability from csaf_suse
Published
2015-03-23 16:13
Modified
2015-03-23 16:13
Summary
Security update for emacs
Notes
Title of the patch
Security update for emacs
Description of the patch
Emacs has been updated to fix the following issues:
* Several cases of insecure usage of temporary files. (CVE-2014-3421,
CVE-2014-3422, CVE-2014-3423, CVE-2014-3424)
* Use of vc-annotate for renamed files when using Git. (bnc#854683)
Security Issues:
* CVE-2014-3421
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3421>
* CVE-2014-3422
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3422>
* CVE-2014-3423
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3423>
* CVE-2014-3424
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3424>
Patchnames
sdksp3-emacs,sledsp3-emacs,slessp3-emacs
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for emacs", title: "Title of the patch", }, { category: "description", text: "\nEmacs has been updated to fix the following issues:\n\n * Several cases of insecure usage of temporary files. (CVE-2014-3421,\n CVE-2014-3422, CVE-2014-3423, CVE-2014-3424)\n * Use of vc-annotate for renamed files when using Git. (bnc#854683)\n\nSecurity Issues:\n\n * CVE-2014-3421\n <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3421>\n * CVE-2014-3422\n <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3422>\n * CVE-2014-3423\n <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3423>\n * CVE-2014-3424\n <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3424>\n\n", title: "Description of the patch", }, { category: "details", text: "sdksp3-emacs,sledsp3-emacs,slessp3-emacs", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0834-1.json", }, { category: "self", summary: "URL for SUSE-SU-2015:0834-1", url: "https://www.suse.com/support/update/announcement/2015/suse-su-20150834-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2015:0834-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001372.html", }, { category: "self", summary: "SUSE Bug 854683", url: "https://bugzilla.suse.com/854683", }, { category: "self", summary: "SUSE Bug 876847", url: "https://bugzilla.suse.com/876847", }, { category: "self", summary: "SUSE CVE CVE-2014-3421 page", url: "https://www.suse.com/security/cve/CVE-2014-3421/", }, { category: "self", summary: "SUSE CVE CVE-2014-3422 page", url: "https://www.suse.com/security/cve/CVE-2014-3422/", }, { category: "self", summary: "SUSE CVE CVE-2014-3423 page", url: "https://www.suse.com/security/cve/CVE-2014-3423/", }, { category: "self", summary: "SUSE CVE CVE-2014-3424 page", url: "https://www.suse.com/security/cve/CVE-2014-3424/", }, ], title: "Security update for emacs", tracking: { current_release_date: "2015-03-23T16:13:36Z", generator: { date: "2015-03-23T16:13:36Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2015:0834-1", initial_release_date: "2015-03-23T16:13:36Z", revision_history: [ { date: "2015-03-23T16:13:36Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "emacs-nox-22.3-4.42.1.i586", product: { name: "emacs-nox-22.3-4.42.1.i586", product_id: "emacs-nox-22.3-4.42.1.i586", }, }, { category: "product_version", name: "emacs-22.3-4.42.1.i586", product: { name: "emacs-22.3-4.42.1.i586", product_id: "emacs-22.3-4.42.1.i586", }, }, { category: "product_version", name: "emacs-info-22.3-4.42.1.i586", product: { name: "emacs-info-22.3-4.42.1.i586", product_id: "emacs-info-22.3-4.42.1.i586", }, }, { category: "product_version", name: "emacs-x11-22.3-4.42.1.i586", product: { name: "emacs-x11-22.3-4.42.1.i586", product_id: "emacs-x11-22.3-4.42.1.i586", }, }, { category: "product_version", name: "emacs-el-22.3-4.42.1.i586", product: { name: "emacs-el-22.3-4.42.1.i586", product_id: "emacs-el-22.3-4.42.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "emacs-22.3-4.42.1.ia64", product: { name: "emacs-22.3-4.42.1.ia64", product_id: "emacs-22.3-4.42.1.ia64", }, }, { category: "product_version", name: "emacs-el-22.3-4.42.1.ia64", product: { name: "emacs-el-22.3-4.42.1.ia64", product_id: "emacs-el-22.3-4.42.1.ia64", }, }, { category: "product_version", name: "emacs-info-22.3-4.42.1.ia64", product: { name: "emacs-info-22.3-4.42.1.ia64", product_id: "emacs-info-22.3-4.42.1.ia64", }, }, { category: "product_version", name: "emacs-nox-22.3-4.42.1.ia64", product: { name: "emacs-nox-22.3-4.42.1.ia64", product_id: "emacs-nox-22.3-4.42.1.ia64", }, }, { category: "product_version", name: "emacs-x11-22.3-4.42.1.ia64", product: { name: "emacs-x11-22.3-4.42.1.ia64", product_id: "emacs-x11-22.3-4.42.1.ia64", }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "emacs-22.3-4.42.1.ppc64", product: { name: "emacs-22.3-4.42.1.ppc64", product_id: "emacs-22.3-4.42.1.ppc64", }, }, { category: "product_version", name: "emacs-el-22.3-4.42.1.ppc64", product: { name: "emacs-el-22.3-4.42.1.ppc64", product_id: "emacs-el-22.3-4.42.1.ppc64", }, }, { category: "product_version", name: "emacs-info-22.3-4.42.1.ppc64", product: { name: "emacs-info-22.3-4.42.1.ppc64", product_id: "emacs-info-22.3-4.42.1.ppc64", }, }, { category: "product_version", name: "emacs-nox-22.3-4.42.1.ppc64", product: { name: "emacs-nox-22.3-4.42.1.ppc64", product_id: "emacs-nox-22.3-4.42.1.ppc64", }, }, { category: "product_version", name: "emacs-x11-22.3-4.42.1.ppc64", product: { name: "emacs-x11-22.3-4.42.1.ppc64", product_id: "emacs-x11-22.3-4.42.1.ppc64", }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "emacs-22.3-4.42.1.s390x", product: { name: "emacs-22.3-4.42.1.s390x", product_id: "emacs-22.3-4.42.1.s390x", }, }, { category: "product_version", name: "emacs-el-22.3-4.42.1.s390x", product: { name: "emacs-el-22.3-4.42.1.s390x", product_id: "emacs-el-22.3-4.42.1.s390x", }, }, { category: "product_version", name: "emacs-info-22.3-4.42.1.s390x", product: { name: "emacs-info-22.3-4.42.1.s390x", product_id: "emacs-info-22.3-4.42.1.s390x", }, }, { category: "product_version", name: "emacs-nox-22.3-4.42.1.s390x", product: { name: "emacs-nox-22.3-4.42.1.s390x", product_id: "emacs-nox-22.3-4.42.1.s390x", }, }, { category: "product_version", name: "emacs-x11-22.3-4.42.1.s390x", product: { name: "emacs-x11-22.3-4.42.1.s390x", product_id: "emacs-x11-22.3-4.42.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "emacs-nox-22.3-4.42.1.x86_64", product: { name: "emacs-nox-22.3-4.42.1.x86_64", product_id: "emacs-nox-22.3-4.42.1.x86_64", }, }, { category: "product_version", name: "emacs-22.3-4.42.1.x86_64", product: { name: "emacs-22.3-4.42.1.x86_64", product_id: "emacs-22.3-4.42.1.x86_64", }, }, { category: "product_version", name: "emacs-info-22.3-4.42.1.x86_64", product: { name: "emacs-info-22.3-4.42.1.x86_64", product_id: "emacs-info-22.3-4.42.1.x86_64", }, }, { category: "product_version", name: "emacs-x11-22.3-4.42.1.x86_64", product: { name: "emacs-x11-22.3-4.42.1.x86_64", product_id: "emacs-x11-22.3-4.42.1.x86_64", }, }, { category: "product_version", name: "emacs-el-22.3-4.42.1.x86_64", product: { name: "emacs-el-22.3-4.42.1.x86_64", product_id: "emacs-el-22.3-4.42.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Software Development Kit 11 SP3", product: { name: "SUSE Linux Enterprise Software Development Kit 11 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 11 SP3", product_identification_helper: { cpe: "cpe:/a:suse:sle-sdk:11:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Desktop 11 SP3", product: { name: "SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3", product_identification_helper: { cpe: "cpe:/o:suse:suse_sled:11:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 11 SP3", product: { name: "SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3", product_identification_helper: { cpe: "cpe:/o:suse:suse_sles:11:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 11 SP3-TERADATA", product: { name: "SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA", product_identification_helper: { cpe: "cpe:/o:suse:sles:11:sp3:teradata", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", product: { name: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:11:sp3", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", }, product_reference: "emacs-nox-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", }, product_reference: "emacs-nox-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", }, product_reference: "emacs-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", }, product_reference: "emacs-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", }, product_reference: "emacs-info-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", }, product_reference: "emacs-info-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", }, product_reference: "emacs-x11-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", product_id: "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", }, product_reference: "emacs-x11-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Desktop 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", }, product_reference: "emacs-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", }, product_reference: "emacs-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", }, product_reference: "emacs-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", }, product_reference: "emacs-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", }, product_reference: "emacs-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", }, product_reference: "emacs-el-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", }, product_reference: "emacs-el-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", }, product_reference: "emacs-el-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", }, product_reference: "emacs-el-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", }, product_reference: "emacs-el-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", }, product_reference: "emacs-info-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", }, product_reference: "emacs-info-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", }, product_reference: "emacs-info-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", }, product_reference: "emacs-info-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", }, product_reference: "emacs-info-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", }, product_reference: "emacs-nox-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", }, product_reference: "emacs-nox-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", }, product_reference: "emacs-nox-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", }, product_reference: "emacs-nox-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", }, product_reference: "emacs-nox-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", }, product_reference: "emacs-x11-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", }, product_reference: "emacs-x11-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", }, product_reference: "emacs-x11-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", }, product_reference: "emacs-x11-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3", product_id: "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", }, product_reference: "emacs-x11-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", }, product_reference: "emacs-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", }, product_reference: "emacs-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", }, product_reference: "emacs-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", }, product_reference: "emacs-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", }, product_reference: "emacs-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", }, product_reference: "emacs-el-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", }, product_reference: "emacs-el-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", }, product_reference: "emacs-el-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", }, product_reference: "emacs-el-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", }, product_reference: "emacs-el-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", }, product_reference: "emacs-info-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", }, product_reference: "emacs-info-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", }, product_reference: "emacs-info-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", }, product_reference: "emacs-info-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", }, product_reference: "emacs-info-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", }, product_reference: "emacs-nox-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", }, product_reference: "emacs-nox-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", }, product_reference: "emacs-nox-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", }, product_reference: "emacs-nox-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", }, product_reference: "emacs-nox-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", }, product_reference: "emacs-x11-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", }, product_reference: "emacs-x11-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", }, product_reference: "emacs-x11-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", }, product_reference: "emacs-x11-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA", product_id: "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", }, product_reference: "emacs-x11-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-TERADATA", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", }, product_reference: "emacs-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", }, product_reference: "emacs-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", }, product_reference: "emacs-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", }, product_reference: "emacs-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", }, product_reference: "emacs-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", }, product_reference: "emacs-el-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", }, product_reference: "emacs-el-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", }, product_reference: "emacs-el-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", }, product_reference: "emacs-el-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-el-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", }, product_reference: "emacs-el-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", }, product_reference: "emacs-info-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", }, product_reference: "emacs-info-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", }, product_reference: "emacs-info-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", }, product_reference: "emacs-info-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-info-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", }, product_reference: "emacs-info-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", }, product_reference: "emacs-nox-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", }, product_reference: "emacs-nox-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", }, product_reference: "emacs-nox-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", }, product_reference: "emacs-nox-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-nox-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", }, product_reference: "emacs-nox-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", }, product_reference: "emacs-x11-22.3-4.42.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", }, product_reference: "emacs-x11-22.3-4.42.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", }, product_reference: "emacs-x11-22.3-4.42.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", }, product_reference: "emacs-x11-22.3-4.42.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, { category: "default_component_of", full_product_name: { name: "emacs-x11-22.3-4.42.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", }, product_reference: "emacs-x11-22.3-4.42.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 11 SP3", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3421", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3421", }, ], notes: [ { category: "general", text: "lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3421", url: "https://www.suse.com/security/cve/CVE-2014-3421", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3421", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2015-03-23T16:13:36Z", details: "moderate", }, ], title: "CVE-2014-3421", }, { cve: "CVE-2014-3422", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3422", }, ], notes: [ { category: "general", text: "lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3422", url: "https://www.suse.com/security/cve/CVE-2014-3422", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3422", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2015-03-23T16:13:36Z", details: "moderate", }, ], title: "CVE-2014-3422", }, { cve: "CVE-2014-3423", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3423", }, ], notes: [ { category: "general", text: "lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3423", url: "https://www.suse.com/security/cve/CVE-2014-3423", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3423", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2015-03-23T16:13:36Z", details: "moderate", }, ], title: "CVE-2014-3423", }, { cve: "CVE-2014-3424", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3424", }, ], notes: [ { category: "general", text: "lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3424", url: "https://www.suse.com/security/cve/CVE-2014-3424", }, { category: "external", summary: "SUSE Bug 876847 for CVE-2014-3424", url: "https://bugzilla.suse.com/876847", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3-TERADATA:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-el-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-info-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-nox-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP3:emacs-x11-22.3-4.42.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP3:emacs-nox-22.3-4.42.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2015-03-23T16:13:36Z", details: "moderate", }, ], title: "CVE-2014-3424", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.