Red Hat Bugzilla – Bug 124395
CAN-2004-0422 flim temporary file vulnerability
Last modified: 2007-11-30 17:10:43 EST
According to Debian advisory DSA 500-1:
Tatsuya Kinoshita discovered a vulnerability in flim, an emacs library
for working with internet messages, where temporary files were created
without taking appropriate precautions. This vulnerability could
potentially be exploited by a local user to overwrite files with the
privileges of the user running emacs.
CAN-2004-0422 Affects: FC1
CAN-2004-0422 Affects: FC2
Issue is public but low risk.
CAN-2004-0422 Affects: FC2 [#124395:MODIFIED] -> 2004-546 20041215