On Wed, 26 Jun 2024 17:24:25 +0700 Max Nikulin wrote:
On Sun, 23 Jun 2024 18:16:27 +0200 Salvatore Bonaccorso wrote:
>
https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=f4cc61636947b5c2f0afc67174dd369fe3277aa8
Will the fix be backported to bookworm emacs-28 package?
Sorry, I have missed fix for CVE-2024-39331
https://tracker.debian.org/news/1539939/accepted-emacs-12821-15deb12u3-source-into-stable-security/
"Accepted emacs 1:28.2+1-15+deb12u3 (source) into stable-security"
I am surprised by a conclusion for
https://security-tracker.debian.org/tracker/CVE-2024-30202
> [bookworm] - emacs <no-dsa> (Minor issue, will be fixed via point release)
that includes fixes
https://tracker.debian.org/news/1537392/accepted-emacs-12821-15deb12u2-source-into-proposed-updates/
"Accepted emacs 1:28.2+1-15+deb12u2 (source) into proposed-updates"
CVE-2024-30202, CVE-2024-30203, CVE-2024-30204 & CVE-2024-30205
Thank you for this work.
