Emacs Vulnerability Fixed in Ubuntu 12.04 LTS and Ubuntu 11.10

Canonical has published in a security notice details about an Emacs vulnerability for its Ubuntu 12.04 LTS and Ubuntu 11.10 operating systems.

According to Canonical, Emacs could be made to run programs, as your login, if it opened a specially crafted file.

Hiroshi Oota and Paul Ling discovered that the Emacs package incorrectly handled search paths and it incorrectly handled certain eval forms in local-variable sections. A local attacker could execute arbitrary… (read more)

Comments are closed.