Описание
Security update for emacs
This update for emacs fixes the following issues:
- CVE-2024-30203: Fixed treating inline MIME contents as trusted (bsc#1222053)
- CVE-2024-30204: Fixed LaTeX preview enabled by default for e-mail attachments (bsc#1222052)
- CVE-2024-30205: Fixed Org mode considering contents of remote files as trusted (bsc#1222050)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP5
emacs-27.2-150400.3.11.1
emacs-el-27.2-150400.3.11.1
emacs-info-27.2-150400.3.11.1
emacs-nox-27.2-150400.3.11.1
etags-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
emacs-x11-27.2-150400.3.11.1
openSUSE Leap 15.5
emacs-27.2-150400.3.11.1
emacs-el-27.2-150400.3.11.1
emacs-info-27.2-150400.3.11.1
emacs-nox-27.2-150400.3.11.1
emacs-x11-27.2-150400.3.11.1
etags-27.2-150400.3.11.1
Ссылки
- Link for SUSE-SU-2024:1294-1
- E-Mail link for SUSE-SU-2024:1294-1
- SUSE Security Ratings
- SUSE Bug 1222050
- SUSE Bug 1222052
- SUSE Bug 1222053
- SUSE CVE CVE-2024-30203 page
- SUSE CVE CVE-2024-30204 page
- SUSE CVE CVE-2024-30205 page
Описание
In Emacs before 29.3, Gnus treats inline MIME contents as trusted.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-el-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-info-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-nox-27.2-150400.3.11.1
Ссылки
- CVE-2024-30203
- SUSE Bug 1222053
Описание
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-el-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-info-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-nox-27.2-150400.3.11.1
Ссылки
- CVE-2024-30204
- SUSE Bug 1222052
Описание
In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-el-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-info-27.2-150400.3.11.1
SUSE Linux Enterprise Module for Basesystem 15 SP5:emacs-nox-27.2-150400.3.11.1
Ссылки
- CVE-2024-30205
- SUSE Bug 1222050