Fedora 38 Emacs Upgrade 2023-5763445abe Critical Command Injection Fix
fedora
September 28, 2023
Upgrade to version 28.3-rc1, fixing CVE-2022-48337, CVE-2022-48338, CVE-2022-48339.
Summary
Emacs is a powerful, customizable, self-documenting, modeless text
editor. Emacs contains special code editing features, a scripting
language (elisp), and the capability to read mail, news, and more
without leaving the editor.
This package provides an emacs binary with support for X windows.
Update Information:
Upgrade to version 28.3-rc1, fixing CVE-2022-48337, CVE-2022-48338, CVE-2022-48339.
Topics Covered
Change Log
* Sat Sep 23 2023 Peter Oliver
References
[ 1 ] Bug #2171990 - CVE-2022-48339 emacs: command injection vulnerability in htmlfontify.el [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2171990 [ 2 ] Bug #2171991 - CVE-2022-48338 emacs: local command injection in ruby-mode.el [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2171991 [ 3 ] Bug #2171992 - CVE-2022-48337 emacs: command execution via shell metacharacters [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2171992
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-5763445abe' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Name: emacs
Product: Fedora 38
Version: 28.3
Release: 0.rc1.fc38
URL:
Summary: GNU Emacs text editor
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!