diff options
author | wiz <wiz> | 2012-08-13 06:38:50 +0000 |
---|---|---|
committer | wiz <wiz> | 2012-08-13 06:38:50 +0000 |
commit | 249590432418f6de6dfe97f99dde21b531a2f493 (patch) | |
tree | 44964ef2941518476e38f56bce89ac55563a5079 /editors/emacs24/Makefile | |
parent | 4a69fe2bad64939e86384585b37ea7ea6a25afe0 (diff) | |
download | pkgsrc-249590432418f6de6dfe97f99dde21b531a2f493.tar.gz |
Fix CVE-2012-3479:
When the Emacs user option `enable-local-variables' is set to `:safe'
(the default value is t), Emacs should automatically refuse to evaluate
`eval' forms in file-local variable sections. Due to the bug, Emacs
instead automatically evaluates such `eval' forms. Thus, if the user
changes the value of `enable-local-variables' to `:safe', visiting a
malicious file can cause automatic execution of arbitrary Emacs Lisp
code with the permissions of the user.
Bug tracker ref: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155
Bump PKGREVISION.
Diffstat (limited to 'editors/emacs24/Makefile')
-rw-r--r-- | editors/emacs24/Makefile | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/editors/emacs24/Makefile b/editors/emacs24/Makefile index 9a78a38c763..7b7e1a11e47 100644 --- a/editors/emacs24/Makefile +++ b/editors/emacs24/Makefile @@ -1,9 +1,9 @@ -# $NetBSD: Makefile,v 1.3 2012/06/29 06:31:35 wiz Exp $ +# $NetBSD: Makefile,v 1.4 2012/08/13 06:38:50 wiz Exp $ CONFLICTS+= emacs-nox11-[0-9]* .include "../../editors/emacs24/Makefile.common" -PKGREVISION= 1 +PKGREVISION= 2 .include "options.mk" |