Red Hat Product Errata RHSA-2025:2130 - Security Advisory
Issued:
2025-03-03
Updated:
2025-03-03

RHSA-2025:2130 - Security Advisory

Synopsis

Important: emacs security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for emacs is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language (elisp), and the capability to read e-mail and news.

Security Fix(es):

  • emacs: Shell Injection Vulnerability in GNU Emacs via Custom "man" URI Scheme (CVE-2025-1244)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

  • BZ - 2345150 - CVE-2025-1244 emacs: Shell Injection Vulnerability in GNU Emacs via Custom "man" URI Scheme

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
emacs-24.3-23.el7_9.2.src.rpm SHA-256: bf006446455eae5e1b1bae930d918d415f96fd9ca5b9d29b4657ce473c053659
x86_64
emacs-24.3-23.el7_9.2.x86_64.rpm SHA-256: 12782eaaf73f0a01ef2367a6934eccb9a22e065bfc2aa4dd949e6ab50fcbee1a
emacs-common-24.3-23.el7_9.2.x86_64.rpm SHA-256: cd10208bd1047a9db1dde8c90ec7d7460a526fc600806e7f19304b270152aa3b
emacs-debuginfo-24.3-23.el7_9.2.x86_64.rpm SHA-256: c14fd68dc1a6da828e77fd4a1485bfa5862959174db2953711860a07ac0018f7
emacs-el-24.3-23.el7_9.2.noarch.rpm SHA-256: 062a8fa5fb5bd76c74e2aa6b7a898d2c2036171ff7f0893c8f70c5e09d9dff7a
emacs-filesystem-24.3-23.el7_9.2.noarch.rpm SHA-256: c8dc58cf2fa382795d5b3fabb6153f8eea924b7e2a49db25e6dd3dcd738e197d
emacs-nox-24.3-23.el7_9.2.x86_64.rpm SHA-256: ab73269f748a16d2f2218b0064e9f7c50d14eefeb56e394b2ad62ca46f8dd504
emacs-terminal-24.3-23.el7_9.2.noarch.rpm SHA-256: 7bb9815a2980c4a68e38e87b8413bafa6c2d954657c19db5899b22d4e3bbe838

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
emacs-24.3-23.el7_9.2.src.rpm SHA-256: bf006446455eae5e1b1bae930d918d415f96fd9ca5b9d29b4657ce473c053659
s390x
emacs-24.3-23.el7_9.2.s390x.rpm SHA-256: e6f9cf000c6454c94a2db701dda98c2f08858b84f99c5a4dadcd609357da9dd2
emacs-common-24.3-23.el7_9.2.s390x.rpm SHA-256: 811ca7a0e79240d241f8c324369e997a3f8300206e0219166cc728b177b914de
emacs-debuginfo-24.3-23.el7_9.2.s390x.rpm SHA-256: 80981c50adeacc3d0a0b2992fa70a7f8cc1f48ac20f214cc2835fcaf5f967ad7
emacs-el-24.3-23.el7_9.2.noarch.rpm SHA-256: 062a8fa5fb5bd76c74e2aa6b7a898d2c2036171ff7f0893c8f70c5e09d9dff7a
emacs-filesystem-24.3-23.el7_9.2.noarch.rpm SHA-256: c8dc58cf2fa382795d5b3fabb6153f8eea924b7e2a49db25e6dd3dcd738e197d
emacs-nox-24.3-23.el7_9.2.s390x.rpm SHA-256: 6f69f14402e0261756ce970b3dfb4c9e563a48f9aeadb95e10e8c6dfa0c2a553
emacs-terminal-24.3-23.el7_9.2.noarch.rpm SHA-256: 7bb9815a2980c4a68e38e87b8413bafa6c2d954657c19db5899b22d4e3bbe838

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
emacs-24.3-23.el7_9.2.src.rpm SHA-256: bf006446455eae5e1b1bae930d918d415f96fd9ca5b9d29b4657ce473c053659
ppc64
emacs-24.3-23.el7_9.2.ppc64.rpm SHA-256: 3c30e45eee40ecc7fe9f1a4d4e2507e12e83492f9eb8f6077c002640df4f0cea
emacs-common-24.3-23.el7_9.2.ppc64.rpm SHA-256: c27d1878155b7dc219c12c22101b2558f0979c4adffcce163ce7933fa3e415ae
emacs-debuginfo-24.3-23.el7_9.2.ppc64.rpm SHA-256: ebe3a0d9278d1d39e3ed6bc8fb5bdf2aadc535451faf344698045adf9d9e6f6c
emacs-el-24.3-23.el7_9.2.noarch.rpm SHA-256: 062a8fa5fb5bd76c74e2aa6b7a898d2c2036171ff7f0893c8f70c5e09d9dff7a
emacs-filesystem-24.3-23.el7_9.2.noarch.rpm SHA-256: c8dc58cf2fa382795d5b3fabb6153f8eea924b7e2a49db25e6dd3dcd738e197d
emacs-nox-24.3-23.el7_9.2.ppc64.rpm SHA-256: 64df455d091a38b1fa3cd64eaebdc1d019d9848f306f282f8aab7886001bef1d
emacs-terminal-24.3-23.el7_9.2.noarch.rpm SHA-256: 7bb9815a2980c4a68e38e87b8413bafa6c2d954657c19db5899b22d4e3bbe838

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
emacs-24.3-23.el7_9.2.src.rpm SHA-256: bf006446455eae5e1b1bae930d918d415f96fd9ca5b9d29b4657ce473c053659
ppc64le
emacs-24.3-23.el7_9.2.ppc64le.rpm SHA-256: 5910f0c4dd528ce294aa94e75adae4299021d68c6493f1be517d733f491fba61
emacs-common-24.3-23.el7_9.2.ppc64le.rpm SHA-256: 58a62d3be5d8f392a35dc7f8c3778dc11139e980e7be3324352694c9c9b4a580
emacs-debuginfo-24.3-23.el7_9.2.ppc64le.rpm SHA-256: 152368df099b5c4d6469d3b0a5d907a3b4639876230fb8b91d4f80701af9cb23
emacs-el-24.3-23.el7_9.2.noarch.rpm SHA-256: 062a8fa5fb5bd76c74e2aa6b7a898d2c2036171ff7f0893c8f70c5e09d9dff7a
emacs-filesystem-24.3-23.el7_9.2.noarch.rpm SHA-256: c8dc58cf2fa382795d5b3fabb6153f8eea924b7e2a49db25e6dd3dcd738e197d
emacs-nox-24.3-23.el7_9.2.ppc64le.rpm SHA-256: 7f3b1a811e4c324430210755e3e6237393b7f36c247578c6bfbc8bd02d60f88f
emacs-terminal-24.3-23.el7_9.2.noarch.rpm SHA-256: 7bb9815a2980c4a68e38e87b8413bafa6c2d954657c19db5899b22d4e3bbe838

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.