1692 matches found
emacs security update
An update is available for emacs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GNU Emacs is a powerful, customizable, self-documenting text editor. It provide...
RLSA-2023:7083 Moderate: emacs security update
GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: command execution via shell metacharacters CVE-2022-48337 emacs: command injection...
RockyLinux 8 : emacs (RLSA-2023:7083)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:7083 advisory. emacs: command execution via shell metacharacters CVE-2022-48337 emacs: command injection vulnerability in htmlfontify.el CVE-2022-48339 Tenable has...
MGASA-2026-0213 Updated emacs packages fix security vulnerability
Memory corruption vulnerability when processing svg css. CVE-2026-6861...
Updated emacs packages fix security vulnerability
Memory corruption vulnerability when processing svg css. CVE-2026-6861...
Astra Linux – Vulnerability in emacs
org-babel-execute: latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbreviation even when it specifies an unsafe function, such as shell-command-to-string. This issue affects Org Mode before 9.7.5...
Astra Linux – Vulnerability in emacs
A vulnerability was discovered in GNU Emacs through version 28.2. The htmlfontify.el script has a command injection vulnerability. In the hfy-istext-command function, the parameter file and parameter srcdir parameters come from external inputs, and these parameters are not escaped properly. If a...
Astra Linux – Vulnerability in emacs
GNU Emacs version 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file. This is because lib-src/etags.c uses the system’s C library function in its implementation of the ctags program. For example, a victim might use the “ctags ” command as suggeste...
Astra Linux – Vulnerability in emacs
A command injection flaw was discovered in the text editor Emacs. This flaw could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirec...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, the Org mode considers the contents of remote files to be trustworthy. This affects Org Mode in versions prior to 9.6.23...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, arbitrary Lisp code is evaluated as part of enabling the Org mode. This affects Org Mode in versions prior to 9.6.23...
Astra Linux – Vulnerability in emacs
In elisp-mode.el of GNU Emacs prior to version 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion, allowing attackers to execute arbitrary code. This unsafe expansion also occurs if a user...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, Gnus treats inline MIME contents as trusted...
Astra Linux – Vulnerability in emacs
GNU Emacs version 28.2 allows attackers to execute commands using shell metacharacters within the name of a source-code file. This is because the lib-src/etags.c file uses a system C library function in its implementation of the etags program. For example, a victim might use the “etags -u ” comma...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, LaTeX preview is enabled by default for e-mail attachments...
Security update for emacs (moderate)
openSUSE security update: security update for emacs ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20759-1 Rating: moderate References: bsc1262007 bsc1262611 Cross-References: CVE-2026-6861 CVSS scores: CVE-2026-6861 SUSE : 6.1...
OPENSUSE-SU-2026:20759-1 Security update for emacs
This update for emacs fixes the following issue: - CVE-2026-6861: memory corruption when processing specially crafted SVG CSS data bsc1262611. - Build with tree-sitter-0.26.8 security update bsc1262007...
SUSE-SU-2026:21801-1 Security update for emacs
This update for emacs fixes the following issue: - CVE-2026-6861: memory corruption when processing specially crafted SVG CSS data bsc1262611. - Build with tree-sitter-0.26.8 security update bsc1262007...
CVE-2026-6861 affecting package emacs for versions less than 29.4-4
CVE-2026-6861 affecting package emacs for versions less than 29.4-4. A patched version of the package is available...