{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","type":"deb","namespace":"debian","name":"xemacs21-packages","version":"0","qualifiers":{"distro":"sid"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2009.02.17-1","latest_non_vulnerable_version":"2009.02.17.dfsg.3-3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219296?format=json","vulnerability_id":"VCID-txrm-zmuw-tbdk","summary":"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3424.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3424","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3424"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586","reference_id":"1095586","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3424"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-txrm-zmuw-tbdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219294?format=json","vulnerability_id":"VCID-vbju-9cs5-nkhe","summary":"lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3422.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3422.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3422","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3422"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586","reference_id":"1095586","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3422"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vbju-9cs5-nkhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219295?format=json","vulnerability_id":"VCID-w54q-5j65-vqca","summary":"lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3423.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3423.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3423","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3423"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586","reference_id":"1095586","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1095586"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3423"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w54q-5j65-vqca"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"}