Lucene search
RedHatRHSA-2024:1103HistoryMar 05, 2024 - 10:44 a.m.
(RHSA-2024:1103) Moderate: emacs security update
2024-03-0510:44:53
access.redhat.com
20
gnu emacs
security update
vulnerabilities
cve-2022-45939
cve-2022-48337
cve-2022-48339
command execution
shell metacharacters
htmlfontify.el
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.004
Percentile
73.8%
GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language (elisp), and the capability to read e-mail and news.
Security Fix(es):
-
emacs: ctags local command execution vulnerability (CVE-2022-45939)
-
emacs: command execution via shell metacharacters (CVE-2022-48337)
-
emacs: command injection vulnerability in htmlfontify.el (CVE-2022-48339)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | ppc64le | emacs-debugsource | < 26.1-7.el8_6.3 | emacs-debugsource-26.1-7.el8_6.3.ppc64le.rpm |
| RedHat | 8 | aarch64 | emacs | < 26.1-7.el8_6.3 | emacs-26.1-7.el8_6.3.aarch64.rpm |
| RedHat | 8 | ppc64le | emacs-debuginfo | < 26.1-7.el8_6.3 | emacs-debuginfo-26.1-7.el8_6.3.ppc64le.rpm |
| RedHat | 8 | aarch64 | emacs-lucid | < 26.1-7.el8_6.3 | emacs-lucid-26.1-7.el8_6.3.aarch64.rpm |
| RedHat | 8 | s390x | emacs | < 26.1-7.el8_6.3 | emacs-26.1-7.el8_6.3.s390x.rpm |
| RedHat | 8 | ppc64le | emacs-nox-debuginfo | < 26.1-7.el8_6.3 | emacs-nox-debuginfo-26.1-7.el8_6.3.ppc64le.rpm |
| RedHat | 8 | x86_64 | emacs-common-debuginfo | < 26.1-7.el8_6.3 | emacs-common-debuginfo-26.1-7.el8_6.3.x86_64.rpm |
| RedHat | 8 | aarch64 | emacs-lucid-debuginfo | < 26.1-7.el8_6.3 | emacs-lucid-debuginfo-26.1-7.el8_6.3.aarch64.rpm |
| RedHat | 8 | aarch64 | emacs-nox | < 26.1-7.el8_6.3 | emacs-nox-26.1-7.el8_6.3.aarch64.rpm |
| RedHat | 8 | x86_64 | emacs | < 26.1-7.el8_6.3 | emacs-26.1-7.el8_6.3.x86_64.rpm |
Related
amazon
amazon
Important: emacs
2023-03-30 22:50:00
Important: emacs
2023-03-02 22:35:00
Important: emacs
2023-01-30 16:03:00
nessus
nessus
Amazon Linux AMI : emacs (ALAS-2023-1712)
2023-04-06 00:00:00
RHEL 8 : emacs (RHSA-2024:1103)
2024-03-05 00:00:00
Amazon Linux 2023 : emacs, emacs-common, emacs-devel (ALAS2023-2023-122)
2023-03-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2120)
2023-06-07 00:00:00
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-3397)
2023-12-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0675-1)
2023-03-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2433
2024-06-17 09:05:21
Advisory ROSA-SA-2023-2191
2023-07-18 11:16:22
oraclelinux
oraclelinux
emacs security update
2023-11-17 00:00:00
emacs security update
2023-05-17 00:00:00
emacs security and bug fix update
2023-05-15 00:00:00
redhat
redhat
(RHSA-2024:1408) Moderate: emacs security update
2024-03-19 16:35:16
(RHSA-2023:7083) Moderate: emacs security update
2023-11-14 08:44:40
(RHSA-2023:3042) Moderate: emacs security and bug fix update
2023-05-16 06:01:30
almalinux
almalinux
Moderate: emacs security update
2023-11-14 00:00:00
Moderate: emacs security and bug fix update
2023-05-16 00:00:00
Important: emacs security update
2023-05-09 00:00:00
osv
osv
Moderate: emacs security update
2023-11-14 00:00:00
emacs - security update
2023-02-23 00:00:00
emacs - security update
2023-05-10 00:00:00
debian
debian
[SECURITY] [DSA 5360-1] emacs security update
2023-02-23 22:11:34
[SECURITY] [DLA 3416-1] emacs security update
2023-05-09 23:02:24
[SECURITY] [DLA 3257-1] emacs security update
2022-12-31 20:00:00
mageia
mageia
Updated emacs packages fix security vulnerability
2023-03-02 00:14:31
Updated emacs packages fix security vulnerability
2022-12-14 01:09:19
freebsd
freebsd
emacs -- multiple vulnerabilities
2022-12-06 00:00:00
emacs -- arbitary shell command execution vulnerability of ctags
2022-11-28 00:00:00
redos
redos
ROS-20240806-06
2024-08-06 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: emacs-28.3-0.rc1.fc38
2023-09-28 01:37:30
[SECURITY] Fedora 37 Update: emacs-28.3-0.rc1.fc37
2023-10-14 01:27:02
[SECURITY] Fedora 37 Update: emacs-28.2-1.fc37
2023-01-03 01:25:38
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0348
2023-03-06 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0544
2023-03-06 00:00:00
redhatcve
redhatcve
ubuntucve
ubuntucve
CVE-2022-45939
2022-11-28 00:00:00
CVE-2022-48339
2023-02-20 00:00:00
prion
prion
Input validation
2023-02-20 23:15:00
Command injection
2023-02-20 23:15:00
Input validation
2022-11-28 06:15:00
alpinelinux
alpinelinux
slackware
slackware
[slackware-security] emacs
2024-03-24 18:25:32
[slackware-security] emacs
2022-12-08 22:51:56
cbl_mariner
cbl_mariner
CVE-2022-45939 affecting package emacs for versions less than 28.1-5
2023-01-03 20:57:36
CVE-2022-48339 affecting package emacs for versions less than 28.2-4
2023-03-17 17:25:17
debiancve
debiancve
CVE-2022-45939
2022-11-28 06:15:10
cnvd
cnvd
GNU Emacs Command Injection Vulnerability
2022-11-30 00:00:00
cve
cve
CVE-2022-45939
2022-11-28 06:15:10
CVE-2022-48339
2023-02-20 23:15:12
ibm
ibm
ubuntu
ubuntu
Emacs vulnerability
2022-12-14 00:00:00
Emacs vulnerability
2023-03-15 00:00:00
veracode
veracode
OS Command Injection
2022-12-04 00:37:54
Command Injection
2023-03-11 19:20:06
nvd
nvd
CVE-2022-45939
2022-11-28 06:15:10
CVE-2022-48339
2023-02-20 23:15:12
cvelist
cvelist
CVE-2022-45939
2022-11-28 00:00:00
CVE-2022-48339
2023-02-20 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.004
Percentile
73.8%
Related for RHSA-2024:1103