Ubuntu
emacs package

emacs 1:27.1+1-3ubuntu5.2 source package in Ubuntu

Changelog

emacs (1:27.1+1-3ubuntu5.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Command Injection
    - debian/patches/CVE-2022-45939.patch: Fixed ctags local command
    execute vulnerability
    - debian/patches/CVE-2022-48337.patch: Fix etags local command
    injection vulnerability
    - debian/patches/CVE-2022-48338.patch: Fix ruby-mode.el local
    command injection vulnerability (bug#60268)
    - debian/patches/CVE-2022-48339.patch: Fix htmlfontify.el command
    injection vulnerability.
    - debian/patches/CVE-2023-28617.patch: * lisp/ob-latex.el: Fix
    command injection vulnerability
    - debian/patches/CVE-2024-30203-04-05-1.patch: * lisp/files.el
    (untrusted-content): New variable.
    - debian/patches/CVE-2024-30203-04-05-2.patch: * lisp/gnus/mm-
    view.el (mm-display-inline-fontify): Mark contents untrusted.
    - debian/patches/CVE-2024-30203-04-05-3.patch: org-latex-preview:
    Add protection when `untrusted-content' is non-nil
    - debian/patches/CVE-2024-30203-04-05-4.patch: org-file-contents:
    Consider all remote files unsafe
    - debian/patches/CVE-2024-39331.patch: org-link-expand-abbrev: Do
    not evaluate arbitrary unsafe Elisp code (LP: #2070418)
    - CVE-2022-45939
    - CVE-2022-48337
    - CVE-2022-48338
    - CVE-2022-48339
    - CVE-2023-28617
    - CVE-2024-30203
    - CVE-2024-30204
    - CVE-2024-30205
    - CVE-2024-39331

 -- Allen Huang <email address hidden>  Thu, 12 Sep 2024 11:23:44 +0100

Upload details

Uploaded by:: Allen Huang on 2024-09-17

Uploaded to:: Jammy

Original maintainer:: Ubuntu Developers

Architectures:: any all

Section:: editors

Urgency:: Medium Urgency

See full publishing history Publishing

Series	Pocket	Published	Component	Section
Jammy	updates	on 2024-09-19	universe	misc
Jammy	security	on 2024-09-19	universe	misc

Builds

Jammy: amd64 arm64 armhf ppc64el riscv64 s390x

Downloads

File	Size	SHA-256 Checksum
emacs_27.1+1.orig.tar.xz	24.3 MiB	7d6ab812795a2fcfef923b053f486bb9aff09fc427a0ff53169ee9c95e96b8f0
emacs_27.1+1-3ubuntu5.2.debian.tar.xz	114.5 KiB	f1ac0d7650298fbcacc34f9a92f4e7a196a0f2b5edf2c844e9e38b678020c63a
emacs_27.1+1-3ubuntu5.2.dsc	2.9 KiB	ec6c5c11e0f8f98da6c472a05eb5dfdfeeb55aa3ec4d0991a22cb64f48ff3550

Available diffs

diff from 1:27.1+1-3ubuntu5.1 (in Ubuntu) to 1:27.1+1-3ubuntu5.2 (128.5 KiB)
diff from 1:27.1+1-3ubuntu5 (in Ubuntu) to 1:27.1+1-3ubuntu5.2 (129.2 KiB)

View changes file

Binary packages built by this source

emacs: GNU Emacs editor (metapackage): GNU Emacs is the extensible self-documenting text editor.
This is a metapackage that will always depend on the latest
recommended Emacs variant (currently emacs-gtk).

emacs-bin-common: GNU Emacs editor's shared, architecture dependent files: GNU Emacs is the extensible self-documenting text editor.
This package contains the architecture dependent infrastructure
that's shared by emacs-gtk, emacs-lucid, and emacs-nox.

emacs-bin-common-dbgsym: debug symbols for emacs-bin-common

emacs-common: GNU Emacs editor's shared, architecture independent infrastructure: GNU Emacs is the extensible self-documenting text editor.
This package contains the architecture independent infrastructure
that's shared by emacs-gtk, emacs-lucid, and emacs-nox.

emacs-el: GNU Emacs LISP (.el) files: GNU Emacs is the extensible self-documenting text editor.
This package contains the elisp sources for the convenience of users,
saving space in the main package for small systems.

emacs-gtk: GNU Emacs editor (with GTK+ GUI support): GNU Emacs is the extensible self-documenting text editor. This
package contains a version of Emacs with a graphical user interface
based on GTK+ (instead of the Lucid toolkit provided by the
emacs-lucid package).

emacs-gtk-dbgsym: debug symbols for emacs-gtk

emacs-lucid: GNU Emacs editor (with Lucid GUI support): GNU Emacs is the extensible self-documenting text editor. This
package contains a version of Emacs with support for a graphical user
interface based on the Lucid toolkit (instead of the GTK+ interface
provided by the emacs-gtk package). Until some known GTK+
problems are fixed, this version may help avoid crashing Emacs during
an emacsclient disconnect. See
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=567934 and
https://bugzilla.gnome.org/show_bug.cgi?id=85715 for more
information.

emacs-lucid-dbgsym: debug symbols for emacs-lucid

emacs-nox: GNU Emacs editor (without GUI support): GNU Emacs is the extensible self-documenting text editor. This
package contains a version of Emacs compiled without support for X,
and provides only a text terminal interface.

emacs-nox-dbgsym: debug symbols for emacs-nox

Ubuntuemacs package

emacs 1:27.1+1-3ubuntu5.2 source package in Ubuntu

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Available diffs

Binary packages built by this source

Ubuntu
emacs package