(RHSA-2023:2626) Important: emacs security update

2023-05-0910:14:01

access.redhat.com

gnu emacs

security update

command execution

command injection

vulnerabilities

cve-2023-2491

cve-2022-48337

cve-2022-48338

cve-2022-48339

red hat enterprise linux

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

65.0%

JSON

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language (elisp), and the capability to read e-mail and news.

Security Fix(es):

emacs: Regression of CVE-2023-28617 fixes in the Red Hat Enterprise Linux (CVE-2023-2491)
emacs: command execution via shell metacharacters (CVE-2022-48337)
emacs: local command injection in ruby-mode.el (CVE-2022-48338)
emacs: command injection vulnerability in htmlfontify.el (CVE-2022-48339)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9aarch64emacs-lucid< 27.2-8.el9_2.1emacs-lucid-27.2-8.el9_2.1.aarch64.rpm
RedHat9x86_64emacs-common-debuginfo< 27.2-8.el9_2.1emacs-common-debuginfo-27.2-8.el9_2.1.x86_64.rpm
RedHat9s390xemacs-common-debuginfo< 27.2-8.el9_2.1emacs-common-debuginfo-27.2-8.el9_2.1.s390x.rpm
RedHat9ppc64leemacs-common-debuginfo< 27.2-8.el9_2.1emacs-common-debuginfo-27.2-8.el9_2.1.ppc64le.rpm
RedHat9ppc64leemacs-lucid-debuginfo< 27.2-8.el9_2.1emacs-lucid-debuginfo-27.2-8.el9_2.1.ppc64le.rpm
RedHat9s390xemacs-debugsource< 27.2-8.el9_2.1emacs-debugsource-27.2-8.el9_2.1.s390x.rpm
RedHat9s390xemacs-common< 27.2-8.el9_2.1emacs-common-27.2-8.el9_2.1.s390x.rpm
RedHat9aarch64emacs-debugsource< 27.2-8.el9_2.1emacs-debugsource-27.2-8.el9_2.1.aarch64.rpm
RedHat9s390xemacs-nox-debuginfo< 27.2-8.el9_2.1emacs-nox-debuginfo-27.2-8.el9_2.1.s390x.rpm
RedHat9noarchemacs-filesystem< 27.2-8.el9_2.1emacs-filesystem-27.2-8.el9_2.1.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	aarch64	emacs-lucid	< 27.2-8.el9_2.1	emacs-lucid-27.2-8.el9_2.1.aarch64.rpm
RedHat	9	x86_64	emacs-common-debuginfo	< 27.2-8.el9_2.1	emacs-common-debuginfo-27.2-8.el9_2.1.x86_64.rpm
RedHat	9	s390x	emacs-common-debuginfo	< 27.2-8.el9_2.1	emacs-common-debuginfo-27.2-8.el9_2.1.s390x.rpm
RedHat	9	ppc64le	emacs-common-debuginfo	< 27.2-8.el9_2.1	emacs-common-debuginfo-27.2-8.el9_2.1.ppc64le.rpm
RedHat	9	ppc64le	emacs-lucid-debuginfo	< 27.2-8.el9_2.1	emacs-lucid-debuginfo-27.2-8.el9_2.1.ppc64le.rpm
RedHat	9	s390x	emacs-debugsource	< 27.2-8.el9_2.1	emacs-debugsource-27.2-8.el9_2.1.s390x.rpm
RedHat	9	s390x	emacs-common	< 27.2-8.el9_2.1	emacs-common-27.2-8.el9_2.1.s390x.rpm
RedHat	9	aarch64	emacs-debugsource	< 27.2-8.el9_2.1	emacs-debugsource-27.2-8.el9_2.1.aarch64.rpm
RedHat	9	s390x	emacs-nox-debuginfo	< 27.2-8.el9_2.1	emacs-nox-debuginfo-27.2-8.el9_2.1.s390x.rpm
RedHat	9	noarch	emacs-filesystem	< 27.2-8.el9_2.1	emacs-filesystem-27.2-8.el9_2.1.noarch.rpm