[Git][security-tracker-team/security-tracker][master] CVE-2022-48338: Vulnerable code introduced after buster
Adrian Bunk (@bunk)
bunk at debian.org
Sat Feb 25 10:28:47 GMT 2023
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aba22d17 by Adrian Bunk at 2023-02-25T12:28:10+02:00
CVE-2022-48338: Vulnerable code introduced after buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -958,8 +958,10 @@ CVE-2022-48339 (An issue was discovered in GNU Emacs through 28.2. htmlfontify.e
CVE-2022-48338 (An issue was discovered in GNU Emacs through 28.2. In ruby-mode.el, th ...)
{DSA-5360-1}
- emacs 1:28.2+1-11 (bug #1031730)
+ [buster] - emacs <not-affected> (Vulnerable code introduced later)
NOTE: https://git.savannah.gnu.org/cgit/emacs.git/commit/?id=9a3b08061feea14d6f37685ca1ab8801758bfd1c
NOTE: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=60268
+ NOTE: Introduced by: https://git.savannah.gnu.org/cgit/emacs.git/commit/?id=27f5627104a073762c3b1d21e55822ec2d2e0347 (27.1)
CVE-2022-48337 (GNU Emacs through 28.2 allows attackers to execute commands via shell ...)
{DSA-5360-1}
- emacs 1:28.2+1-11 (bug #1031730)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba22d17af7c685e09af7137ad55f32bd036b729
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba22d17af7c685e09af7137ad55f32bd036b729
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230225/467a1bf9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list