eldav, a WebDAV client for Emacs, creates temporary files without
taking appropriate security precautions. This vulnerability could be
exploited by a local user to create or overwrite files with the
privileges of the user running emacs and eldav.
For the stable distribution (woody) this problem has been fixed in
The old stable distribution (potato) does not contain an eldav
For the unstable distribution (sid) this problem has been fixed in
We recommend that you update your eldav package.
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
will update the internal database
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 3.0 alias woody
Size/MD5 checksum: 592 9dd06517b53570a595d5c368924ceda1
Size/MD5 checksum: 3814 c4400b418452e1aea9a115a2af82e1aa
Size/MD5 checksum: 12319 3b62e4b9b05eb1c8ef27e9f5d3b98db2
Architecture independent components:
Size/MD5 checksum: 15546 5dc5beca6a1c57b5a4b32968ebc07da4
These files will probably be moved into the stable distribution on
its next revision.