GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted “Content-Type: text/enriched” data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe Gnus support for enriched and richtext inline MIME objects in lisp/gnus/mm-view.el. In particular, an Emacs user can be instantly compromised by reading a crafted email message (or Usenet news article).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 9 | all | emacs24 | < 24.5+1-11+deb9u1 | emacs24_24.5+1-11+deb9u1_all.deb |
Debian | 9 | all | emacs25 | < 25.1+1-4+deb9u1 | emacs25_25.1+1-4+deb9u1_all.deb |