CVE-2017-14482

Published: 14 September 2017

GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe Gnus support for enriched and richtext inline MIME objects in lisp/gnus/mm-view.el. In particular, an Emacs user can be instantly compromised by reading a crafted email message (or Usenet news article).

Priority

Cvss 3 Severity Score

8.8

Score breakdown

Status

Package	Release	Status
emacs24 Launchpad, Ubuntu, Debian	trusty	Released (24.3+1-2ubuntu1.1)
	upstream	Needs triage
	xenial	Released (24.5+1-6ubuntu1.1)
	zesty	Ignored (end of life)
	artful	Does not exist
	bionic	Does not exist
	cosmic	Does not exist
	disco	Does not exist
emacs25 Launchpad, Ubuntu, Debian	upstream	Released (25.2+1-6)
	trusty	Does not exist
	xenial	Does not exist
	zesty	Released (25.1+1-3ubuntu4.1)
	artful	Not vulnerable (25.2+1-6)
	bionic	Not vulnerable (25.2+1-6)
	cosmic	Does not exist
	disco	Does not exist
emacs23 Launchpad, Ubuntu, Debian	upstream	Needs triage
	trusty	Does not exist (trusty was needed)
	xenial	Does not exist
	zesty	Does not exist
	artful	Does not exist
	bionic	Does not exist
	cosmic	Does not exist
	disco	Does not exist

Severity score breakdown

Parameter	Value
Base score	8.8
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›