Описание
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
A flaw was found in Emacs. When Emacs is used as an email client, a preview of a crafted LaTeX document attached to an email can exhaust the disk space or the inodes allocated for the partition where the /tmp directory is located. This issue possibly results in a denial of service.
Меры по смягчению последствий
Do not open or do not generate a preview of LaTeX documents from untrusted sources.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | emacs | Affected | ||
| Red Hat Enterprise Linux 6 | emacs | Out of support scope | ||
| Red Hat Enterprise Linux 7 | emacs | Out of support scope | ||
| Red Hat Enterprise Linux 8 | emacs | Affected | ||
| Red Hat Enterprise Linux 9 | emacs | Fixed | RHSA-2024:9302 | 12.11.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail a ...
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
EPSS
5.5 Medium
CVSS3