security/vuxml: Document Emacs < 29.4 vulnerability
AbandonedPublic
Actions

Authored by jrm on Jun 23 2024, 4:19 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Thu, Jun 25, 8:41 PM

	Unknown Object (File)
	May 6 2026, 12:39 AM

	Unknown Object (File)
	May 2 2026, 4:08 PM

	Unknown Object (File)
	Apr 22 2026, 1:38 PM

	Unknown Object (File)
	Apr 18 2026, 11:38 PM

	Unknown Object (File)
	Apr 18 2026, 8:55 PM

	Unknown Object (File)
	Apr 17 2026, 11:42 AM

	Unknown Object (File)
	Apr 14 2026, 1:30 PM

View All 71 Files

Subscribers

None

Details

Reviewers

ashish
yasu

Summary

Emacs 29.4 is an emergency bugfix release intended to fix a security
vulnerability. Arbitrary shell commands are no longer run when turning
on Org mode in order to avoid running malicious code.

Obtained from: https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29.4
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository

R11 FreeBSD ports repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 58314
Build 55202: arc lint + arc unit

Event Timeline

jrm requested review of this revision.Jun 23 2024, 4:19 PM

jrm created this revision.

Harbormaster completed remote builds in B58314: Diff 140125.Jun 23 2024, 4:19 PM

Sorry. I somehow submitted this one twice using git arc. See D45702.

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln/

2024.xml

29 lines

Diff 140125

View Options

security/vuxml/vuln/2024.xml

security/vuxml: Document Emacs < 29.4 vulnerabilityAbandonedPublicActions