Synopsis: Important: emacs security update
Advisory ID: SLSA-2017:2771-1
Issue Date: 2017-09-19
CVE Numbers: CVE-2017-14482
—
Security Fix(es):
* A command injection flaw within the Emacs “enriched mode” handling has
been discovered. By tricking an unsuspecting user into opening a specially
crafted file using Emacs, a remote attacker could exploit this flaw to
execute arbitrary commands with the privileges of the Emacs user.
(CVE-2017-14482)
—
SL7
x86_64
emacs-24.3-20.el7_4.x86_64.rpm
emacs-common-24.3-20.el7_4.x86_64.rpm
emacs-debuginfo-24.3-20.el7_4.x86_64.rpm
emacs-nox-24.3-20.el7_4.x86_64.rpm
noarch
emacs-filesystem-24.3-20.el7_4.noarch.rpm
emacs-el-24.3-20.el7_4.noarch.rpm
emacs-terminal-24.3-20.el7_4.noarch.rpm
– Scientific Linux Development Team
