Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

Gentoo GLSA-200710-22 Normal: TRAMP Insecure Temp File Creation

gentoo
Calendar Grey October 20, 2007
Dist Gentoo Esm H88
The potential risk associated with the inadequate generation of transient files in TRAMP for GNU Emacs raises concerns about local exploitation that could compromise the integrity of files.
The TRAMP package for GNU Emacs insecurely creates temporary files.

Summary

Gentoo Linux Security Advisory GLSA 200710-22 https://security.gentoo.org/ Severity: Normal Title: TRAMP: Insecure temporary file creation Date: October 20, 2007 Bugs: #194713 ID: 200710-22

Synopsis ======= The TRAMP package for GNU Emacs insecurely creates temporary files.
Background ========= TRAMP is a remote file editing package for GNU Emacs, a highly extensible and customizable text editor.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-emacs/tramp < 2.1.10-r2 >= 2.1.10-r2 *< 2.1
========== Stefan Monnier discovered that the tramp-make-tramp-temp-file() function creates temporary files ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo file integrity local attack emacs normal tramp

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo file integrity local attack emacs normal tramp

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here