Fluid Attacks Database

Description

Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval" command line.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	xemacs21	>=0 <21.4.21-4	21.4.21-4
debian 12	xemacs21	>=0 <21.4.21-4	21.4.21-4

Aliases

1. CVE-2007-61092. NVD-2007-61093. OSV-DEBIAN-2007-61094. OSV-2007-61095. SECURITY-TRACKER-CVE-2007-6109

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.