[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: 2023-02-27 Emacs news
From: |
Emanuel Berg |
Subject: |
Re: 2023-02-27 Emacs news |
Date: |
Tue, 28 Feb 2023 02:22:40 +0100 |
User-agent: |
Gnus/5.13 (Gnus v5.13) |
Sacha Chua wrote:
> 2023-02-27 Emacs news
Exactly 100 links!
M-x how-many RET http RET
100
Maybe the Emacs community _is_ big, after all ...
> - Security:
> - [CVE-2022-48337: GNU Emacs through 28.2 allows attackers to execute
> commands via shell metacharacters in the name of a source-code file]
> (<https://security-tracker.debian.org/tracker/CVE-2022-48337>)
> - [CVE-2022-48338: In GNU Emacs through 28.2. In ruby-mode.el, the
> ruby-find-library-file function has a local command injection vulnerability.]
> (<https://security-tracker.debian.org/tracker/CVE-2022-48338>)
> - [CVE-2022-48339: Emacs <= 28.2: htmlfontify.el has a command injection
> vulnerability] (<https://security-tracker.debian.org/tracker/CVE-2022-48339>)
> - [Emacs 28.3 rc1 pretest is available, fixing CVE-2022-45939]
> (<https://www.reddit.com/r/emacs/comments/117mezb/emacs_283_rc1_pretest_is_available_fixing/>)
Cred!
--
underground experts united
https://dataswamp.org/~incal