Bug 14063

Summary: [CVE 21] emacs 28.1 CVEs found
Product: [ROSA-based products] ROSA Fresh Reporter: Vladimir Potapov <v.potapov>
Component: Packages from MainAssignee: ROSA Linux Bugs <bugs>
Status: VERIFIED FIXED QA Contact: ROSA Linux Bugs <bugs>
Severity: blocker    
Priority: Highest CC: a.proklov, e.kosachev, pastordidi
Version: AllFlags: v.potapov: qa_verified+
e.kosachev: secteam_verified+
a.proklov: published+
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: CVE-2022-48339, CVE-2022-48338, CVE-2022-45939,CVE-2022-48337
Whiteboard:
Platform: --- ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Vladimir Potapov 2023-11-29 15:33:52 MSK
https://nvd.nist.gov/vuln/detail/CVE-2022-48339 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-48338 Base Score: 7.3 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-45939 Base Score: 7.8 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2022-48337 Base Score: 9.8 CRITICAL
Comment 1 Aleksandr Proklov 2023-11-30 05:40:05 MSK
уязвимости закрыты патчами, в 2023.1 обновлена версия

emacs	28.1-5

https://abf.io/build_lists/4848996
https://abf.io/build_lists/4848997
https://abf.io/build_lists/4848998
https://abf.io/build_lists/4848999
https://abf.io/build_lists/4849000
Comment 2 Dmitry Postnikov 2023-11-30 14:49:50 MSK
*****************************
Обновление отослано в Тестинг
Comment 3 Vladimir Potapov 2023-12-04 18:49:58 MSK
emacs-28.1-5
https://abf.io/build_lists/4848996
https://abf.io/build_lists/4848997
https://abf.io/build_lists/4848998
https://abf.io/build_lists/4848999
https://abf.io/build_lists/4849000
************************* Advisory *************************
CVEs closed by patches
************************************************************
QA Verified
Comment 4 Eduard 2024-06-17 12:05:57 MSK
*******************************************************
Secteam_verified
*******************************************************
https://abf.rosalinux.ru/advisories/ROSA-SA-2024-2433
*******************************************************