emacs-24.3-23.1.0.3.el7.AXS7
エラータID: AXSA:2024-8951:05
Release date:
Tuesday, October 29, 2024 - 16:44
Subject:
emacs-24.3-23.1.0.3.el7.AXS7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
Emacs is a powerful, customizable, self-documenting, modeless text editor. Emacs
contains special code editing features, a scripting language (elisp), and the
capability to read mail, news, and more without leaving the editor.
This package provides an emacs binary with support for X windows.
Security Fix(es):
* CVE-2024-39331: do not expand link abbrevs that contain unsafe function
CVE(s):
CVE-2024-39331
In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.
Solution:
Update packages.
CVEs:
CVE-2024-39331
In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.
In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.
Additional Info:
N/A
Download:
Asianux Server 7 for x86_64
- emacs-24.3-23.1.0.3.el7.AXS7.x86_64.rpm
MD5: 1d65fd5d97894fdcf77b8458e7ee79db
SHA-256: 49de62dc7724c4a080693178572e80ef82d160fb89590325df5065e822d78bd9
Size: 2.87 MB - emacs-common-24.3-23.1.0.3.el7.AXS7.x86_64.rpm
MD5: 8ebf5566e71b50a315ed3b1f8caae079
SHA-256: 6be19fe1ed3b55e0e940d8418e1eb43efc3859b133b0897c67e908c534b87c21
Size: 20.47 MB - emacs-filesystem-24.3-23.1.0.3.el7.AXS7.noarch.rpm
MD5: 239b00daa213977f188d2c46fda4d0f1
SHA-256: 70b5a1a18eb8a52e87292d797ac1e5acf30fce22605fa8ca9d8edbc37d0f785c
Size: 58.05 kB - emacs-nox-24.3-23.1.0.3.el7.AXS7.x86_64.rpm
MD5: cc072aa3e234b6903b6f61a167e71a55
SHA-256: bb302c967424bb6fc6fac84b4b7210640bb0ddb5912e0545f4c3f3ccc65e21d1
Size: 2.43 MB
日本語