Subject: CVS commit: pkgsrc/editors
From: Ryo ONODERA
Date: 2017-09-12 05:19:02
Message id: 20170912031902.F0D64FA98@cvs.NetBSD.org
Log Message:
Update emacs25 and emacs25-nox11 to 25.3

Changelog:
This is an emergency release to fix a security vulnerability in Emacs.

Enriched Text mode has its support for decoding 'x-display' disabled.
This feature allows saving 'display' properties as part of text.
Emacs 'display' properties support evaluation of arbitrary Lisp forms
as part of instantiating the property, so decoding 'x-display' is
vulnerable to executing arbitrary malicious Lisp code included in the
text (e.g., sent as part of an email message).

This vulnerability was introduced in Emacs 19.29.
Files:
RevisionActionfile
1.11modifypkgsrc/editors/emacs25/Makefile
1.5modifypkgsrc/editors/emacs25/distinfo
1.3modifypkgsrc/editors/emacs25/version.mk
1.5modifypkgsrc/editors/emacs25-nox11/Makefile
1.1removepkgsrc/editors/emacs25/patches/patch-lisp_gnus_mm-view.el
1.1removepkgsrc/editors/emacs25/patches/patch-lisp_textmodes_enriched.el