Описание
Security update for emacs
This update for emacs fixes the following issues:
- CVE-2024-39331: Fixed evaluation of arbitrary unsafe Elisp code in Org mode (bsc#1226957).
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
emacs-x11-27.2-150400.3.17.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
emacs-x11-27.2-150400.3.17.1
SUSE Linux Enterprise Server 15 SP4-LTSS
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Manager Proxy 4.3
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
SUSE Manager Server 4.3
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
openSUSE Leap 15.5
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
openSUSE Leap 15.6
emacs-27.2-150400.3.17.1
emacs-el-27.2-150400.3.17.1
emacs-info-27.2-150400.3.17.1
emacs-nox-27.2-150400.3.17.1
emacs-x11-27.2-150400.3.17.1
etags-27.2-150400.3.17.1
Ссылки
- Link for SUSE-SU-2024:2567-1
- E-Mail link for SUSE-SU-2024:2567-1
- SUSE Security Ratings
- SUSE Bug 1226957
- SUSE CVE CVE-2024-39331 page
Описание
In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:emacs-27.2-150400.3.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:emacs-el-27.2-150400.3.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:emacs-info-27.2-150400.3.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:emacs-nox-27.2-150400.3.17.1
Ссылки
- CVE-2024-39331
- SUSE Bug 1226957