[3.7] emacs: Unsafe enriched mode translations (CVE-2017-14482)
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code
via email with crafted “Content-Type: text/enriched”
data containing an x-display XML element that specifies execution of
shell commands, related to an unsafe text/enriched extension
in lisp/textmodes/enriched.el, and unsafe Gnus support for enriched and
richtext inline MIME objects in lisp/gnus/mm-view.el.
In particular, an Emacs user can be instantly compromised by reading a
crafted email message (or Usenet news article).
Affected Versions:
GNU Emacs versions 19.29 through 25.2.
References:
http://openwall.com/lists/oss-security/2017/09/11/1
https://nvd.nist.gov/vuln/detail/CVE-2017-14482
Patch:
(from redmine: issue id 7863, created on 2017-09-19, closed on 2017-09-26)
- Relations:
- parent #7862 (closed)
- Changesets:
- Revision 2d461935 by Francesco Colista on 2017-09-25T10:09:31Z:
community/emacs: security upgrade to 25.3 (CVE-2017-14482) Fixes #7863