dgit.raspbian.org Git - emacs.git/commit

author	Xi Lu <lx@shellcodes.org>
	Sat, 11 Mar 2023 10:53:37 +0000 (18:53 +0800)
committer	Rob Browning <rlb@defaultvalue.org>
	Fri, 31 Mar 2023 18:20:17 +0000 (13:20 -0500)
commit	320ab831aad7b66605e3778abe51a29cc377fb46
tree	04bac2da7e5b449380437ef04b9cbad699ec6864	tree \| snapshot
parent	cf3c2037c3531b756fbb443b8ab2f6873f10930e	commit \| diff

Org Mode vulnerability CVE-2023-28617 is fixed (1/2)

https://security-tracker.debian.org/tracker/CVE-2023-28617

This upstream patch (1/2) has been incorporated to fix the problem:

  * lisp/ob-latex.el: Fix command injection vulnerability

  (org-babel-execute:latex):
  Replaced the `(shell-command "mv BAR NEWBAR")' with `rename-file'.

  TINYCHANGE

Origin: https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=a8006ea580ed74f27f974d60b598143b04ad1741
Bug-Debian: https://bugs.debian.org/1033342