Opened 10 months ago

Closed 10 months ago

Last modified 9 months ago

#19991 closed enhancement (fixed)

emacs-29.4

Reported by: Bruce Dubbs Owned by: blfs-book
Priority: elevated Milestone: 12.2
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New minor version.

Change History (4)

comment:1 by Bruce Dubbs, 10 months ago

Changes in Emacs 29.4 Emacs 29.4 is an emergency bugfix release intended to fix the security vulnerability described below.

  • Arbitrary shell commands are no longer run when turning on Org mode.

This is for security reasons, to avoid running malicious commands.

comment:2 by Bruce Dubbs, 10 months ago

Resolution: fixed
Status: newclosed

Fixed at commit 12858a3da9.

comment:3 by Douglas R. Reno, 9 months ago

Priority: normalelevated

More details for the security advisory: 

Hi,

Here is a vulnerability in Emacs Org mode.

Reproducer is the following .org file:

#+LINK: shell %(shell-command-to-string)
[[shell:touch ~/hacked.txt]]

When sent by email and previewed in Emacs or when opened in Emacs as a
file, the above Org file will evaluate "touch ~/hacked.txt" without any
prompts.

comment:4 by Douglas R. Reno, 9 months ago

SA-12.1-071 issued

Note: See TracTickets for help on using tickets.