security/vuxml: Document Emacs < 29.4 vulnerability
AbandonedPublic
Actions

Authored by jrm on Jun 23 2024, 4:19 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Mon, Mar 30, 10:20 AM

	Unknown Object (File)
	Sun, Mar 29, 7:37 PM

	Unknown Object (File)
	Sun, Mar 29, 5:55 AM

	Unknown Object (File)
	Thu, Mar 19, 2:17 PM

	Unknown Object (File)
	Thu, Mar 19, 7:40 AM

	Unknown Object (File)
	Mar 1 2026, 1:17 AM

	Unknown Object (File)
	Feb 22 2026, 12:29 AM

	Unknown Object (File)
	Feb 7 2026, 5:33 PM

View All 60 Files

Subscribers

None

Details

Reviewers

ashish
yasu

Summary

Emacs 29.4 is an emergency bugfix release intended to fix a security
vulnerability. Arbitrary shell commands are no longer run when turning
on Org mode in order to avoid running malicious code.

Obtained from: https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29.4
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository

R11 FreeBSD ports repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 58314
Build 55202: arc lint + arc unit

Event Timeline

jrm requested review of this revision.Jun 23 2024, 4:19 PM

jrm created this revision.

Harbormaster completed remote builds in B58314: Diff 140125.Jun 23 2024, 4:19 PM

Sorry. I somehow submitted this one twice using git arc. See D45702.

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln/

2024.xml

29 lines

Diff 140125

View Options

security/vuxml/vuln/2024.xml

security/vuxml: Document Emacs < 29.4 vulnerabilityAbandonedPublicActions