CVE-2014-9483

NameCVE-2014-9483
DescriptionEmacs 24.4 allows remote attackers to bypass security restrictions.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium (attack range: remote)
Debian Bugs774090

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
emacs24 (PTS)jessie (security), jessie24.4+1-5+deb8u1vulnerable
stretch (security), stretch24.5+1-11+deb9u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
emacs23source(unstable)(not affected)
emacs24source(unstable)24.5+1-1unimportant774090

Notes

- emacs23 <not-affected> (Only affects Emacs 24)
http://debbugs.gnu.org/cgi/bugreport.cgi?bug=18939
Plain bug, security implications rather far-fetched

Search for package or bug name: Reporting problems