security/vuxml: Document Emacs < 29.4 vulnerability
AbandonedPublic
Actions

Authored by jrm on Jun 23 2024, 4:19 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Fri, Nov 14, 2:00 PM

	Unknown Object (File)
	Wed, Nov 12, 8:37 PM

	Unknown Object (File)
	Sat, Nov 8, 11:42 PM

	Unknown Object (File)
	Tue, Nov 4, 11:16 AM

	Unknown Object (File)
	Tue, Oct 28, 7:14 AM

	Unknown Object (File)
	Tue, Oct 28, 7:14 AM

	Unknown Object (File)
	Tue, Oct 28, 12:59 AM

	Unknown Object (File)
	Oct 19 2025, 2:46 AM

View All 42 Files

Subscribers

None

Details

Reviewers

ashish
yasu

Summary

Emacs 29.4 is an emergency bugfix release intended to fix a security
vulnerability. Arbitrary shell commands are no longer run when turning
on Org mode in order to avoid running malicious code.

Obtained from: https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29.4
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository

R11 FreeBSD ports repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 58314
Build 55202: arc lint + arc unit

Event Timeline

jrm requested review of this revision.Jun 23 2024, 4:19 PM

jrm created this revision.

Harbormaster completed remote builds in B58314: Diff 140125.Jun 23 2024, 4:19 PM

Sorry. I somehow submitted this one twice using git arc. See D45702.

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln/

2024.xml

29 lines

Diff 140125

View Options

security/vuxml/vuln/2024.xml

security/vuxml: Document Emacs < 29.4 vulnerabilityAbandonedPublicActions