Home / mailings [SECURITY] [DSA 3970-1] emacs24 security update
Posted on 12 September 2017
Debian Security Advisory-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
- -------------------------------------------------------------------------
Debian Security Advisory DSA-3970-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
September 12, 2017 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : emacs24
CVE ID : not yet available
Charles A. Roelli discovered that Emacs is vulnerable to arbitrary code
execution when rendering text/enriched MIME data (e.g. when using
Emacs-based mail clients).
For the oldstable distribution (jessie), this problem has been fixed
in version 24.4+1-5+deb8u1.
For the stable distribution (stretch), this problem has been fixed in
version 24.5+1-11+deb9u1.
We recommend that you upgrade your emacs24 packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
