|
From: | Paul Eggert |
Subject: | Re: enriched.el code execution |
Date: | Thu, 7 Sep 2017 14:24:42 -0700 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1 |
Reiner Steib wrote:
If I understand correctly, this issue is serious enough (CVSS is 8.8, Common Vulnerability Scoring System, v3.0) that we should prepare a security fix release (from Emacs 25.2) as soon as we have a fix for this bug (or we should disable this feature of enriched mode).
I favor this as well. Although I hate maintaining the old branch, this bug is quite serious.
[Prev in Thread] | Current Thread | [Next in Thread] |