Sean Whitton uploaded new packages for emacs which fixed the following
security problems:
CVE-2024-30202
In Emacs before 29.3, arbitrary Lisp code is evaluated as part of
turning on Org mode. This affects Org Mode before 9.6.23.
CVE-2024-30203
<believed bogus, request submitted to MITRE to merge with next CVE>
CVE-2024-30204
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail
attachments in some Emacs MUAs. This can lead to denial of service.
CVE-2024-30205
In Emacs before 29.3, Org mode considers contents of remote files to
be trusted. This affects Org Mode before 9.6.23.
For the bullseye-backports distribution, the problems have been fixed in
version 1:29.3+1-2~bpo12+1.
Attachment:
signature.asc
Description: PGP signature