MDKSA-2000:088

Package name

emacs

Date

2000-12-31

Advisory ID

MDKSA-2000:088

Affected versions

6.1 i586 , 6.0 i586 , 7.0 i586

Problem description

A vulnerability exists in Emacs 20.6 and prior that allows any user on a multiuser system to eavesdrop on, or forge responses to, an Emacs client. The vulnerability stems from Emacs' failure to properly set permissions for slave PTY devices.

Updated packages

6.1 i586

 4fb0c48430873347a71fae4fbac39d48  6.1/RPMS/emacs-20.6-8.1mdk.i586.rpm
eb1ec6fcef2703ba8ed825a97f8233b2  6.1/RPMS/emacs-el-20.6-8.1mdk.i586.rpm
dae51c47102cb3526654d2064d5ab860  6.1/RPMS/emacs-leim-20.6-8.1mdk.i586.rpm
d6932030d2a37e757e7194626e89941c  6.1/RPMS/emacs-nox-20.6-8.1mdk.i586.rpm
18cf4174338d31d07fe88dd9ae5618da  6.1/RPMS/emacs-X11-20.6-8.1mdk.i586.rpm
710a849a5fa9b52a8c30ed0a86705d9e  6.1/SRPMS/emacs-20.6-8.1mdk.src.rpm

6.0 i586

 9d53a902aaf0b2ab69927d15a9933acd  6.0/RPMS/emacs-20.6-8.1mdk.i586.rpm
e8ae9cbfd3b9bd96bee524f52359d1f3  6.0/RPMS/emacs-el-20.6-8.1mdk.i586.rpm
83c830ac5467f611237ba5e183eebb56  6.0/RPMS/emacs-leim-20.6-8.1mdk.i586.rpm
a2f5b39d8ee04e4ac664989dacdff5e4  6.0/RPMS/emacs-nox-20.6-8.1mdk.i586.rpm
3c2664f80ccaeb7e85a89fc3920c5887  6.0/RPMS/emacs-X11-20.6-8.1mdk.i586.rpm
710a849a5fa9b52a8c30ed0a86705d9e  6.0/SRPMS/emacs-20.6-8.1mdk.src.rpm

7.0 i586

 2e2f0f630c492ceeec64d176c3c71c4a  7.0/RPMS/emacs-20.6-8.1mdk.i586.rpm
e9c5cb445f863d6a2393e67c8bdecc4d  7.0/RPMS/emacs-el-20.6-8.1mdk.i586.rpm
c0d94ad3a670e28b833619283f0d0826  7.0/RPMS/emacs-leim-20.6-8.1mdk.i586.rpm
69750c8e1373e7837910bd2edac24aea  7.0/RPMS/emacs-nox-20.6-8.1mdk.i586.rpm
537601d9abb483f28050695e7cae7010  7.0/RPMS/emacs-X11-20.6-8.1mdk.i586.rpm
710a849a5fa9b52a8c30ed0a86705d9e  7.0/SRPMS/emacs-20.6-8.1mdk.src.rpm