2.8

CVE-2024-30204

In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GnuEmacs Version < 29.3
GnuOrg Mode SwPlatformgnu_emacs Version < 9.6.23
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.47% 0.375
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 2.8 1.3 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

http://www.openwall.com/lists/oss-security/2024/03/25/2
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/08/6
Mailing List
https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29
Release Notes
http://www.openwall.com/lists/oss-security/2024/04/08/3
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/08/4
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/08/7
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/10/3
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/10/4
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/10/5
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/10/6
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/11/4
Mailing List
https://lists.debian.org/debian-lts-announce/2024/04/msg00023.html
Mailing List
https://lists.debian.org/debian-lts-announce/2024/04/msg00024.html
Mailing List
https://git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-29&id=6f9ea396f49cbe38c2173e0a72ba6af3e03b271c
Patch