1688 matches found
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, arbitrary Lisp code is evaluated as part of enabling the Org mode. This affects Org Mode in versions prior to 9.6.23...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, Gnus treats inline MIME contents as trusted...
MGASA-2026-0213 Updated emacs packages fix security vulnerability
Memory corruption vulnerability when processing svg css. CVE-2026-6861...
Updated emacs packages fix security vulnerability
Memory corruption vulnerability when processing svg css. CVE-2026-6861...
Astra Linux - уязвимость в emacs
A command injection flaw was discovered in the text editor Emacs. This flaw could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirec...
Astra Linux - уязвимость в emacs
In elisp-mode.el of GNU Emacs prior to version 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion, allowing attackers to execute arbitrary code. This unsafe expansion also occurs if a user...
Astra Linux - уязвимость в emacs
In Emacs versions before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbreviation even when it specifies an unsafe function, such as shell-command-to-string. This issue affects Org Mode before 9.7.5...
Security update for emacs (moderate)
openSUSE security update: security update for emacs ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20759-1 Rating: moderate References: bsc1262007 bsc1262611 Cross-References: CVE-2026-6861 CVSS scores: CVE-2026-6861 SUSE : 6.1...
OPENSUSE-SU-2026:20759-1 Security update for emacs
This update for emacs fixes the following issue: - CVE-2026-6861: memory corruption when processing specially crafted SVG CSS data bsc1262611. - Build with tree-sitter-0.26.8 security update bsc1262007...
SUSE-SU-2026:21801-1 Security update for emacs
This update for emacs fixes the following issue: - CVE-2026-6861: memory corruption when processing specially crafted SVG CSS data bsc1262611. - Build with tree-sitter-0.26.8 security update bsc1262007...
CVE-2026-6861 affecting package emacs for versions less than 29.4-4
CVE-2026-6861 affecting package emacs for versions less than 29.4-4. A patched version of the package is available...
Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-6861)
The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-6861 advisory. - A flaw was found in GNU Emacs. This vulnerability, a memory corruption issue, occurs when Emacs...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, LaTeX preview is enabled by default for e-mail attachments...
Astra Linux – Vulnerability in emacs
org-babel-execute: latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters...
Astra Linux – Vulnerability in emacs
In Emacs versions before 29.3, the Org mode considers the contents of remote files to be trustworthy. This affects Org Mode in versions prior to 9.6.23...
Astra Linux – Vulnerability in emacs
GNU Emacs version 28.2 allows attackers to execute commands using shell metacharacters within the name of a source-code file. This is because the lib-src/etags.c file uses a system C library function in its implementation of the etags program. For example, a victim might use the “etags -u ” comma...
Astra Linux – Vulnerability in emacs
A vulnerability was discovered in GNU Emacs through version 28.2. The htmlfontify.el script has a command injection vulnerability. In the hfy-istext-command function, the parameter file and parameter srcdir parameters come from external inputs, and these parameters are not escaped properly. If a...
Astra Linux – Vulnerability in emacs
GNU Emacs version 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file. This is because lib-src/etags.c uses the system’s C library function in its implementation of the ctags program. For example, a victim might use the “ctags ” command as suggeste...
OESA-2026-2131 emacs security update
Emacs is the extensible, customizable, self-documenting real-time display editor. At its core is an interpreter for Emacs Lisp, a dialect of the Lisp programming language with extensions to support text editing. And it is an entire ecosystem of functionality beyond text editing, including a proje...
OESA-2026-2130 emacs security update
Emacs is the extensible, customizable, self-documenting real-time display editor. At its core is an interpreter for Emacs Lisp, a dialect of the Lisp programming language with extensions to support text editing. And it is an entire ecosystem of functionality beyond text editing, including a proje...