projects / emacs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: 4f93980 47b3d66)
Add 0018-Don-t-let-CEDET-execute-code-from-an-arbitrary-Proje.patch.
authorRob Browning <rlb@defaultvalue.org>
Sun, 29 Jan 2012 19:40:42 +0000 (13:40 -0600)
committerRob Browning <rlb@defaultvalue.org>
Sun, 29 Jan 2012 19:40:47 +0000 (13:40 -0600)
commitc5f03f5ae0dd17726bc5999bbe22043a0c27538c
tree99d633ae2ea1a21cd0754bd3ced70da2e9b3e43ctree | snapshot
parent4f93980793d9b10b87898e8f68ebbacc5df17c40commit | diff
parent47b3d66260508d7529dbd401a3e325fd79cf8e3ccommit | diff
Add 0018-Don-t-let-CEDET-execute-code-from-an-arbitrary-Proje.patch.

Don't execute arbitrary elisp code from any file named Project.ede in
or above a CEDET-related directory (CVE-2012-0035).

Thanks to Florian Weimer <fw@deneb.enyo.de> for the report.

Closes: #655299
debian/.git-dpm diff1 | | blob | history
debian/patches/0018-Don-t-let-CEDET-execute-code-from-an-arbitrary-Proje.patch | | blob
debian/patches/series diff1 | | blob | history
Unnamed repository; edit this file 'description' to name the repository.