Sacha Chua wrote: > 2023-02-27 Emacs news
Exactly 100 links! M-x how-many RET http RET 100 Maybe the Emacs community _is_ big, after all ... > - Security: > - [CVE-2022-48337: GNU Emacs through 28.2 allows attackers to execute > commands via shell metacharacters in the name of a source-code file] > (<https://security-tracker.debian.org/tracker/CVE-2022-48337>) > - [CVE-2022-48338: In GNU Emacs through 28.2. In ruby-mode.el, the > ruby-find-library-file function has a local command injection vulnerability.] > (<https://security-tracker.debian.org/tracker/CVE-2022-48338>) > - [CVE-2022-48339: Emacs <= 28.2: htmlfontify.el has a command injection > vulnerability] (<https://security-tracker.debian.org/tracker/CVE-2022-48339>) > - [Emacs 28.3 rc1 pretest is available, fixing CVE-2022-45939] > (<https://www.reddit.com/r/emacs/comments/117mezb/emacs_283_rc1_pretest_is_available_fixing/>) Cred! -- underground experts united https://dataswamp.org/~incal