FEDORA-2017-a1dc0ef38c

security update in Fedora 26 for emacs

Status: stable 8 months ago

#1490649 - emacs-25.3 is available

#1490410 - unsafe enriched mode translations (security)

Comments 12

This update has been submitted for testing by jsynacek.

This conflicts with https://bodhi.fedoraproject.org/updates/FEDORA-2017-8f27031c8f if one already has that installed from updates-testing. (I do.)

How can it conflict? The upgrade path is clear and the patch wasn't there in the git repo. I wasn't even aware that someone released emacs in a mass update like that.

This update has been pushed to testing.

works for me

karma: +1

Works great! LGTM! =)

karma: +1

@jsynacek: Correction, yesterday it gave me an error when I tried to upgrade using Koji downloads, but I didn't know there was a new dependency. (The error messages weren't clear.) When pulling via the updates-testing repo dnf picks up compat-ImageMagick693-libs as a new dependency.

Dependencies resolved.
=======================================================================================================================================
 Package                                   Arch                  Version                          Repository                      Size
=======================================================================================================================================
Upgrading:
 emacs                                     x86_64                1:25.3-1.fc26                    updates-testing                3.1 M
 emacs-common                              x86_64                1:25.3-1.fc26                    updates-testing                 38 M
 emacs-filesystem                          noarch                1:25.3-1.fc26                    updates-testing                 67 k
Installing dependencies:
 compat-ImageMagick693-libs                x86_64                6.9.3.10-1.fc26                  updates-testing                2.1 M

Transaction Summary
=======================================================================================================================================
Install  1 Package
Upgrade  3 Packages

The previous version in updates-testing had increased its ImageMagick dependency requirement to 6.9.9.

@dhgutteridge Does that mean that it works for you now? It looks like it.

@jsynacek: Yes, it installs and works fine for me.

karma: +1 critpath: +1 #1490649: +1

This update has been submitted for stable by bodhi.

karma: +1 critpath: +1 #1490649: +1

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines
#1490410 CVE-2017-14482 emacs: Unsafe enriched mode translations [fedora-all]
#1490409 CVE-2017-14482 emacs: command injection flaw within "enriched mode" handling
#1490649 emacs-25.3 is available
Does the system's basic functionality continue to work after this update?
Is the update generally functional?
Content Type
RPM
Status
stable
Submitted by
Update Type
security
Karma
+4
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 8 months ago
in testing 8 months ago
in stable 8 months ago

Related Bugs 3

00 #1490410 CVE-2017-14482 emacs: Unsafe enriched mode translations [fedora-all]
00 #1490409 CVE-2017-14482 emacs: command injection flaw within "enriched mode" handling
0+2 #1490649 emacs-25.3 is available

Automated Test Results

Test results and gating status may sometimes conflict as the gating status is retrieved periodically by Bodhi's backend server, while the test results presented here are retrieved upon page load. If your update is marked as gated while all the tests show green/passed, the next check of gating status should open the gate.