Overview

File _patchinfo of Package patchinfo.33336

<patchinfo incident="33336">
  <issue tracker="cve" id="2024-30203"/>
  <issue tracker="cve" id="2024-30204"/>
  <issue tracker="cve" id="2024-30205"/>
  <issue tracker="cve" id="2024-39331"/>
  <issue tracker="bnc" id="1222050">VUL-0: CVE-2024-30205: emacs: Org mode considers contents of remote files to be trusted</issue>
  <issue tracker="bnc" id="1222052">VUL-0: CVE-2024-30204: emacs: LaTeX preview is enabled by default for e-mail attachments</issue>
  <issue tracker="bnc" id="1222053">VUL-0: CVE-2024-30203: emacs: Gnus treats inline MIME contents as trusted</issue>
  <issue tracker="bnc" id="1226957">VUL-0: CVE-2024-39331: emacs: evaluation of arbitrary unsafe Elisp code in Org mode</issue>
  <packager>WernerFink</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for emacs</summary>
  <description>This update for emacs fixes the following issues:

- CVE-2024-30203: Fixed denial of service via MIME contents (bsc#1222053).
- CVE-2024-30204: Fixed denial of service via LaTeX preview in e-mail attachments (bsc#1222052).
- CVE-2024-30204: Fixed Org mode considers contents of remote files to be trusted (bsc#1222050).
- CVE-2024-39331: Fixed evaluation of arbitrary unsafe Elisp code in Org mode (bsc#1226957).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places