[Bug 2087914] Re: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205)
Thanks for the aforementioned patch - as Eduardo pointed out this CVE is already patched via Ubuntu Pro. If however you would like it to be patched in the Ubuntu archive, you could prepare an update as per https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures and attach it here as a debdiff. Then someone from the security team could sponsor it on your behalf. ** Changed in: emacs (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2087914 Title: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/emacs/+bug/2087914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 2087914] Re: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205)
Hi, As Mark tried to point out, this and a some other CVEs are already fixed and available through Ubuntu Pro. https://ubuntu.com/security/notices/USN-7027-1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2087914 Title: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/emacs/+bug/2087914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 2087914] Re: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205)
Yes the attachment CVE-2024-30205.patch is a patch for emacs:26.3+1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2087914 Title: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/emacs/+bug/2087914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 2087914] Re: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205)
The attachment "CVE-2024-30205.patch" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team. [This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.] ** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2087914 Title: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/emacs/+bug/2087914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 2087914] Re: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205)
https://ubuntu.com/security/CVE-2024-30205 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-30205 ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2087914 Title: Security Vulnerability in Emacs Org Mode's Handling of Remote Files (CVE-2024-30205) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/emacs/+bug/2087914/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs