Mandriva Linux Security Advisory : emacs (MDVSA-2008:096)
Medium Nessus Plugin ID 36539
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionSteve Grubb found that the vcdiff script in Emacs create temporary files insecurely when used with SCCS. A local user could exploit a race condition to create or overwrite files with the privileges of the user invoking the program (CVE-2008-1694).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.