Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Slackware 15.0: Critical Emacs Vulnerability Resolution 2024-084-01

slackware
Calendar Grey March 24, 2024
Dist Slackware Esm H88
Recent updates to emacs packages have been released for Slackware, targeting vital security issues and improving overall system defense.
New emacs packages are available for Slackware 15.0 and -current to fix security issues

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/emacs-29.3-i586-1_slack15.0.txz: Upgraded. GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etags.c uses the system C library function in its implementation of the ctags program. For example, a victim may use the "ctags *" command (suggested in the ctags documentation) in a situation where the current working directory has contents that depend on untrusted input. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-45939 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical attack Slackware software Emacs

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 15.0:
Updated package for Slackware x86_64 15.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 15.0 package: 8bc1c8849d6487b3edd7ddec5d006cc6 emacs-29.3-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: 4849c24a9f196f58e67fcb01da4d124e emacs-29.3-x86_64-1_slack15.0.txz
Slackware -current package: a056d1a49f5570b1d598f1c5ebc14077 e/emacs-29.3-i586-1.txz
Slackware x86_64 -current package: 67ae9819b6728f52705f3a8c56f2d150 e/emacs-29.3-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical attack Slackware software Emacs

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg emacs-29.3-i586-1_slack15.0.txz

Your message here