Common Vulnerabilities and Exposures assigned an identifier CVE-2007-6109 to the following vulnerability: Buffer overflow in emacs allows attackers to have an unknown impact, as demonstrated via a vector involving the command line. References: http://www.novell.com/linux/security/advisories/2007_25_sr.html
To exploit this the user would have to be convinced to run an untrusted el script. Red Hat does not consider this issue to be a security vulnerability since no trust boundary is crossed. The user must voluntarily interact with the attack mechanism to exploit this flaw, with the result being the ability to run code as themselves.
Created attachment 282581 [details] Patch used by SuSE