projects / emacs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 665489d) | patch
Fix ruby-mode.el command injection vulnerability (CVE-2022-48338)
authorXi Lu <lx@shellcodes.org>
Fri, 23 Dec 2022 04:52:48 +0000 (12:52 +0800)
committerSean Whitton <spwhitton@spwhitton.name>
Wed, 22 Feb 2023 17:50:42 +0000 (10:50 -0700)
commit52fb40cf6a3c50c996cff79b0d4f81fc39c7badf
tree6a3761757690bd68369b45d14f301014623172b9tree | snapshot
parent665489d7de786a61fa0c0883b9dffbc76487e37ecommit | diff
Fix ruby-mode.el command injection vulnerability (CVE-2022-48338)

This upstream patch has been incorporated to fix the problem:

  Fix ruby-mode.el local command injection vulnerability (bug#60268)

  * lisp/progmodes/ruby-mode.el
  (ruby-find-library-file): Fix local command injection vulnerability.

Origin: upstream, commit 22fb5ff5126dc8bb01edaa0252829d853afb284f
Bug: https://debbugs.gnu.org/60268
Bug-Debian: https://bugs.debian.org/1031730
Forwarded: not-needed
lisp/progmodes/ruby-mode.el diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.