Lucene search
RedHatRHSA-2004:344HistoryAug 18, 2004 - 12:00 a.m.
(RHSA-2004:344) semi security update
2004-08-1800:00:00
access.redhat.com
9
0.0004 Low
EPSS
Percentile
5.1%
The semi package includes a MIME library for GNU Emacs and XEmacs used by
the wl mail package.
Tatsuya Kinoshita discovered a vulnerability in flim, an emacs library
for working with Internet messages included in the semi package. Temporary
files were being created without taking adequate precautions, and therefore
a local user could potentially overwrite files with the privileges of the
user running emacs. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0422 to this issue.
Users of semi are advised to upgrade to these packages, which contain
a backported patch fixing this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | noarch | semi-xemacs | < 1.14.3-8.72.EL.1 | semi-xemacs-1.14.3-8.72.EL.1.noarch.rpm |
| RedHat | any | noarch | semi | < 1.14.3-8.72.EL.1 | semi-1.14.3-8.72.EL.1.noarch.rpm |
Related
openvas
openvas
Debian Security Advisory DSA 500-1 (flim)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-500)
2008-01-17 00:00:00
debian
debian
securityvulns
securityvulns
nessus
nessus
Fedora Core 2 : flim-1.14.7-0.FC2 (2004-546)
2004-12-15 00:00:00
RHEL 2.1 : semi (RHSA-2004:344)
2004-08-18 00:00:00
Debian DSA-500-1 : flim - insecure temporary file
2004-09-29 00:00:00
cvelist
cvelist
CVE-2004-0422
2004-05-06 04:00:00
cve
cve
CVE-2004-0422
2004-07-07 04:00:00
osv
osv
flim - insecure temporary file
2004-05-01 00:00:00
debiancve
debiancve
CVE-2004-0422
2004-07-07 04:00:00
nvd
nvd
CVE-2004-0422
2004-07-07 04:00:00