CVE 2007-6109
Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval" command line.
Related bugs and status
CVE-2007-6109 (Candidate) is related to these bugs:
Bug #154989: Spell improperly configured
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
154989 | Spell improperly configured | emacs22 (Ubuntu) | Undecided | Fix Released |
Bug #157984: emacs-nox adds a launcher in menu
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
157984 | emacs-nox adds a launcher in menu | emacs22 (Ubuntu) | Undecided | Fix Released |
Bug #162890: comint-watch-for-password-prompt does not catch sudo prompt
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
162890 | comint-watch-for-password-prompt does not catch sudo prompt | emacs22 (Ubuntu) | Undecided | Fix Released |
Bug #162932: messes up alternatives on removal
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
162932 | messes up alternatives on removal | emacs22 (Ubuntu) | Undecided | Fix Released |
Bug #172389: Please upload emacs22 22.1-0ubuntu10
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
172389 | Please upload emacs22 22.1-0ubuntu10 | emacs22 (Ubuntu) | Undecided | Fix Released | ||
172389 | Please upload emacs22 22.1-0ubuntu10 | emacs22 (Ubuntu Hardy) | Undecided | Fix Released |
Bug #174177: [emacs] [CVE-2007-6109] buffer overflow
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Debian) | Unknown | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu Dapper) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu Dapper) | Undecided | Invalid | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu Feisty) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu Feisty) | Undecided | Invalid | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu Gutsy) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu Gutsy) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu Intrepid) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu Intrepid) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs21 (Ubuntu Hardy) | Undecided | Fix Released | ||
174177 | [emacs] [CVE-2007-6109] buffer overflow | emacs22 (Ubuntu Hardy) | Undecided | Fix Released |
Bug #180164: README.Debian is confusing
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
180164 | README.Debian is confusing | emacs22 (Ubuntu) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.