[Secure-testing-team] Bug#875447: emacs25: enriched text remote code execution
Salvatore Bonaccorso
carnil at debian.org
Mon Sep 11 13:25:37 UTC 2017
Source: emacs25
Version: 25.1+1-4
Severity: grave
Tags: patch upstream security
Justification: user security hole
Forwarded: https://bugs.gnu.org/28350
Control: clone -1 -2 -3
Control: reassign -2 src:emacs24 24.4+1-4
Control: retitle -2 emacs24: enriched text remote code execution
Control: reassing -3 src:emacs23 23.4+1-4
Control: retitle -3 emacs23: enriched text remote code execution
Hi
See http://www.openwall.com/lists/oss-security/2017/09/11/1 for
details. The bug has been reported upstream at:
https://bugs.gnu.org/28350
Upstream commit:
https://git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-25&id=9ad0fcc54442a9a01d41be19880250783426db70
Regards,
Salvatore
More information about the Secure-testing-team
mailing list