security/vuxml: Document Emacs < 29.4 vulnerability
AbandonedPublic
Actions

Authored by jrm on Jun 23 2024, 4:19 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Wed, Apr 22, 1:38 PM

	Unknown Object (File)
	Sat, Apr 18, 11:38 PM

	Unknown Object (File)
	Sat, Apr 18, 8:55 PM

	Unknown Object (File)
	Fri, Apr 17, 11:42 AM

	Unknown Object (File)
	Tue, Apr 14, 1:30 PM

	Unknown Object (File)
	Sat, Apr 11, 2:22 AM

	Unknown Object (File)
	Tue, Apr 7, 9:06 PM

	Unknown Object (File)
	Thu, Apr 2, 6:24 AM

View All 68 Files

Subscribers

None

Details

Reviewers

ashish
yasu

Summary

Emacs 29.4 is an emergency bugfix release intended to fix a security
vulnerability. Arbitrary shell commands are no longer run when turning
on Org mode in order to avoid running malicious code.

Obtained from: https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29.4
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository

R11 FreeBSD ports repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 58314
Build 55202: arc lint + arc unit

Event Timeline

jrm requested review of this revision.Jun 23 2024, 4:19 PM

jrm created this revision.

Harbormaster completed remote builds in B58314: Diff 140125.Jun 23 2024, 4:19 PM

Sorry. I somehow submitted this one twice using git arc. See D45702.

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln/

2024.xml

29 lines

Diff 140125

View Options

security/vuxml/vuln/2024.xml

security/vuxml: Document Emacs < 29.4 vulnerabilityAbandonedPublicActions