OPENSUSE-SU-2024:12777-1 emacs-28.2-3.1 on GA media

These are all security issues fixed in the emacs-28.2-3.1 package on the GA media of openSUSE Tumbleweed...

CVE-2022-48337 affecting package emacs for versions less than 28.2-4

CVE-2022-48337 affecting package emacs for versions less than 28.2-4. A patched version of the package is available...

CVE-2023-27986 affecting package emacs for versions less than 28.2-4

CVE-2023-27986 affecting package emacs for versions less than 28.2-4. A patched version of the package is available...

CVE-2023-27986

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters. It is fixed in 29.0.90...

GNU Emacs 命令注入漏洞

GNU Emacs is a family of text editors in the American GNU community. A security vulnerability exists in GNU Emacs version 28.2 and earlier versions, which stems from not escaping the file parameter and the srcdir parameter. An attacker can exploit this vulnerability to execute arbitrary commands...

GNU Emacs Command Injection Vulnerability

GNU Emacs is a family of text editors from the GNU community in the U.S. A command injection vulnerability exists in GNU Emacs version 28.2 and earlier, which stems from lib-src/etags.c's use of system C library functions when implementing the ctags program. An attacker could exploit the...

PT-2022-7423 · Gnu Emacs +9 · Gnu Emacs +9

Name of the Vulnerable Software and Affected Versions: GNU Emacs versions through 28.2 Description: The issue is related to the incorrect neutralization of special elements in the lib-src/etags.c component of the ctags program in the EMACS text editor. This can allow an attacker to execute comman...