VULHUB ™

A vulnerability exists in the way in which passwords are stored in history, in Emacs 20, from GNU. Passwords read using the read-password function under emacs-lisp are not cleared from the history cache. This means that anyone who has access to an Emacs session on a terminal can use the history to potentially gain passwords captured.

A vulnerability exists in the way in which passwords are stored in history, in Emacs 20, from GNU. Passwords read using the read-password function under emacs-lisp are not cleared from the history cache. This means that anyone who has access to an Emacs session on a terminal can use the history to potentially gain passwords captured.