Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Debian: DLA-3416-1 Critical: Emacs Input Sanitizing Risk

debian lts
Calendar Grey May 9, 2023
Dist Debian Esm H88
The Debian LTS Advisory DLA-3416-1 addresses security flaws in Emacs resulting from insufficient input validation.
Xi Lu discovered that missing input sanitizing in Emacs could result in the execution of arbitrary shell commands

Summary

We recommend that you upgrade your emacs packages.

For the detailed security status of emacs please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/emacs

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

-------------------------------------------------------------------------Package: emacs
Version: 1:26.1+1-3.2+deb10u4
CVE ID: CVE-2022-48337 CVE-2022-48339 CVE-2023-28617
Debian Bug: 1031730 1033342

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.