Lucene search
RedHatRHSA-2023:1958HistoryApr 25, 2023 - 8:11 a.m.
(RHSA-2023:1958) Important: emacs security update
2023-04-2508:11:12
access.redhat.com
21
gnu emacs
security update
command injection
org-mode
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
35.4%
GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language (elisp), and the capability to read e-mail and news.
Security Fix(es):
- emacs: command injection vulnerability in org-mode (CVE-2023-28617)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | s390x | emacs-nox-debuginfo | < 26.1-5.el8_4.1 | emacs-nox-debuginfo-26.1-5.el8_4.1.s390x.rpm |
| RedHat | 8 | s390x | emacs-lucid | < 26.1-5.el8_4.1 | emacs-lucid-26.1-5.el8_4.1.s390x.rpm |
| RedHat | 8 | s390x | emacs-common-debuginfo | < 26.1-5.el8_4.1 | emacs-common-debuginfo-26.1-5.el8_4.1.s390x.rpm |
| RedHat | 8 | x86_64 | emacs-debugsource | < 26.1-5.el8_4.1 | emacs-debugsource-26.1-5.el8_4.1.x86_64.rpm |
| RedHat | 8 | x86_64 | emacs-lucid-debuginfo | < 26.1-5.el8_4.1 | emacs-lucid-debuginfo-26.1-5.el8_4.1.x86_64.rpm |
| RedHat | 8 | aarch64 | emacs-nox | < 26.1-5.el8_4.1 | emacs-nox-26.1-5.el8_4.1.aarch64.rpm |
| RedHat | 8 | s390x | emacs-debuginfo | < 26.1-5.el8_4.1 | emacs-debuginfo-26.1-5.el8_4.1.s390x.rpm |
| RedHat | 8 | x86_64 | emacs-nox | < 26.1-5.el8_4.1 | emacs-nox-26.1-5.el8_4.1.x86_64.rpm |
| RedHat | 8 | ppc64le | emacs-common-debuginfo | < 26.1-5.el8_4.1 | emacs-common-debuginfo-26.1-5.el8_4.1.ppc64le.rpm |
| RedHat | 8 | ppc64le | emacs | < 26.1-5.el8_4.1 | emacs-26.1-5.el8_4.1.ppc64le.rpm |
Related
nessus
nessus
Ubuntu 16.04 ESM : Emacs vulnerability (USN-6003-1)
2023-04-06 00:00:00
RHEL 9 : emacs (RHSA-2023:2010)
2023-04-25 00:00:00
RHEL 8 : emacs (RHSA-2023:1930)
2023-04-25 00:00:00
oraclelinux
oraclelinux
emacs security update
2023-04-24 00:00:00
emacs security update
2023-05-02 00:00:00
rocky
rocky
emacs security update
2023-05-05 15:41:01
emacs security update
2023-04-26 15:28:03
cbl_mariner
cbl_mariner
CVE-2023-28617 affecting package emacs for versions less than 28.2-5
2023-03-30 01:18:53
osv
osv
Important: emacs security update
2023-04-26 15:28:03
CVE-2023-28617
2023-03-19 03:15:11
emacs24 vulnerability
2023-04-06 16:15:35
cvelist
cvelist
CVE-2023-28617
2023-03-19 00:00:00
CVE-2023-2491
2023-05-17 00:00:00
redhatcve
redhatcve
CVE-2023-28617
2023-03-24 13:07:51
CVE-2023-2491
2023-05-03 12:16:44
veracode
veracode
OS Command Injection
2023-08-06 07:40:29
openvas
openvas
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2639)
2023-09-05 00:00:00
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-1801)
2023-05-09 00:00:00
Ubuntu: Security Advisory (USN-6003-1)
2023-04-07 00:00:00
redhat
redhat
(RHSA-2023:3189) Important: emacs security update
2023-05-17 15:12:59
(RHSA-2023:1930) Important: emacs security update
2023-04-24 02:21:45
(RHSA-2023:1931) Important: emacs security update
2023-04-24 02:46:12
mageia
mageia
Updated emacs packages fix security vulnerability
2023-04-24 03:20:26
debiancve
debiancve
CVE-2023-28617
2023-03-19 03:15:11
CVE-2023-2491
2023-05-17 22:15:10
amazon
amazon
Important: emacs
2023-04-13 19:28:00
nvd
nvd
CVE-2023-28617
2023-03-19 03:15:11
CVE-2023-2491
2023-05-17 22:15:10
cve
cve
CVE-2023-28617
2023-03-19 03:15:11
CVE-2023-2491
2023-05-17 22:15:10
almalinux
almalinux
Important: emacs security update
2023-05-02 00:00:00
Important: emacs security update
2023-04-24 00:00:00
Important: emacs security update
2023-05-16 00:00:00
debian
debian
[SECURITY] [DLA 3616-1] org-mode security update
2023-10-12 11:09:58
[SECURITY] [DLA 3416-1] emacs security update
2023-05-09 23:02:24
prion
prion
Design/Logic Flaw
2023-03-19 03:15:00
Command injection
2023-05-17 22:15:00
ubuntucve
ubuntucve
CVE-2023-28617
2023-03-19 00:00:00
CVE-2023-2491
2023-05-17 00:00:00
ubuntu
ubuntu
Emacs vulnerability
2023-04-06 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-09-28 07:46:35
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
35.4%
Related for RHSA-2023:1958