[Git][security-tracker-team/security-tracker][master] CVE-2022-48338: Vulnerable code introduced after buster

Adrian Bunk (@bunk) Sat, 25 Feb 2023 02:29:01 -0800


Adrian Bunk pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
aba22d17 by Adrian Bunk at 2023-02-25T12:28:10+02:00
CVE-2022-48338: Vulnerable code introduced after buster

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -958,8 +958,10 @@ CVE-2022-48339 (An issue was discovered in GNU Emacs 
through 28.2. htmlfontify.e
 CVE-2022-48338 (An issue was discovered in GNU Emacs through 28.2. In 
ruby-mode.el, th ...)
        {DSA-5360-1}
        - emacs 1:28.2+1-11 (bug #1031730)
+       [buster] - emacs <not-affected> (Vulnerable code introduced later)
        NOTE: 
https://git.savannah.gnu.org/cgit/emacs.git/commit/?id=9a3b08061feea14d6f37685ca1ab8801758bfd1c
        NOTE: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=60268
+       NOTE: Introduced by: 
https://git.savannah.gnu.org/cgit/emacs.git/commit/?id=27f5627104a073762c3b1d21e55822ec2d2e0347
 (27.1)
 CVE-2022-48337 (GNU Emacs through 28.2 allows attackers to execute commands 
via shell  ...)
        {DSA-5360-1}
        - emacs 1:28.2+1-11 (bug #1031730)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba22d17af7c685e09af7137ad55f32bd036b729

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba22d17af7c685e09af7137ad55f32bd036b729
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] CVE-2022-48338: Vulnerable code introduced after buster

Reply via email to