GNU bug report logs - #24489
efaq: security risks

Previous Next

Package: emacs;

Reported by: Glenn Morris <rgm <at> gnu.org>

Date: Tue, 20 Sep 2016 22:49:02 UTC

Severity: minor

Tags: security

Found in version 25.1

Fixed in version 29.1

Done: Lars Ingebrigtsen <larsi <at> gnus.org>

Bug is archived. No further changes may be made.

Full log

Message #24 received at 24489 <at> debbugs.gnu.org (full text, mbox):

From: Stefan Kangas <stefan <at> marxist.se>
To: Glenn Morris <rgm <at> gnu.org>
Cc: 24489 <at> debbugs.gnu.org
Subject: Re: bug#24489: efaq: security risks
Date: Tue, 11 Aug 2020 18:38:12 -0700

Glenn Morris <rgm <at> gnu.org> writes:

> The (very crufty) Emacs FAQ contains a section:
>
>    "Are there any security risks in Emacs?"
>
> The stuff about movemail and synthetic X events is archaic.

The movemail stuff was removed in 61223a046c (Bug#37818).

What do you think we should do about synthetic X events?

> There is no mention of the more current problems:
>
> 1) installing a package runs arbitrary code
> Better make sure you trust whoever gave you that package (gpg signing)
> and how you got it (https), etc.

This was added in the same commit 61223a046c.

> 2) using an Emacs mail client to view HTML mail is a security risk if remote
> content is fetched (I think it isn't by default, but this might not
> apply to every client)

Is it important to warn about this privacy issue here?  I would expect
that any sensible Emacs MUA would disable remote fetching by default,
and document the issues with enabling it.

> 3) viewing remote HTML content (eg with eww or xwidgets) is likewise a
> potential security risk.

True, but isn't this a bit too general to be useful in the context of
the FAQ?

Best regards,
Stefan Kangas
This bug report was last modified 3 years and 191 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.