Bug 2171987 (CVE-2022-48337)
| Summary: | CVE-2022-48337 emacs: command execution via shell metacharacters | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | TEJ RATHI <trathi> |
| Component: | vulnerability | Assignee: | Nobody <nobody> |
| Status: | NEW --- | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | jmigacz, rtillery |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: |
A flaw was found in the Emacs package. This flaw allows attackers to execute commands via shell metacharacters in the name of a source-code file.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2171992, 2175188, 2175189, 2175190, 2184369 | ||
| Bug Blocks: | 2171978 | ||
|
Description
TEJ RATHI
2023-02-21 06:23:10 UTC
Created emacs tracking bugs for this issue: Affects: fedora-all [bug 2171992] This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:2626 https://access.redhat.com/errata/RHSA-2023:2626 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:7083 https://access.redhat.com/errata/RHSA-2023:7083 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:1103 https://access.redhat.com/errata/RHSA-2024:1103 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:1408 https://access.redhat.com/errata/RHSA-2024:1408 |