Advisories ยป MGASA-2014-0250

Updated emacs packages fix CVE-2014-3421-4

Publication date: 06 Jun 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3421 , CVE-2014-3422 , CVE-2014-3423 , CVE-2014-3424

Description

Updated emacs packages fix security vulnerabilities:

Steve Kemp discovered multiple temporary file handling issues in Emacs.
A local attacker could use these flaws to perform symbolic link attacks 
against users running Emacs (CVE-2014-3421, CVE-2014-3422, CVE-2014-3423,
CVE-2014-3424).
                

References

SRPMS

4/core

3/core