CVE 2010-0825
lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.
Related bugs and status
CVE-2010-0825 (Candidate) is related to these bugs:
Bug #531569: Emacs movemail race condition
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
531569 | Emacs movemail race condition | emacs22 (Ubuntu) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Hardy) | Medium | Won't Fix | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Hardy) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Hardy) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Intrepid) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Intrepid) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Intrepid) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Dapper) | Medium | Won't Fix | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Dapper) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Dapper) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Lucid) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Lucid) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Lucid) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Jaunty) | Medium | Won't Fix | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Jaunty) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Jaunty) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs21 (Ubuntu Karmic) | Medium | Invalid | ||
531569 | Emacs movemail race condition | emacs22 (Ubuntu Karmic) | Medium | Fix Released | ||
531569 | Emacs movemail race condition | emacs23 (Ubuntu Karmic) | Medium | Fix Released |
Bug #611931: Merge xemacs21 21.4.22-3.1 (universe) from Debian unstable (main)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
611931 | Merge xemacs21 21.4.22-3.1 (universe) from Debian unstable (main) | xemacs21 (Ubuntu) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.