diff options
author | Ihor Radchenko <yantar92@posteo.net> | 2024-02-02 20:59:41 +0100 |
---|---|---|
committer | Sean Whitton <spwhitton@spwhitton.name> | 2024-04-30 09:08:33 +0100 |
commit | 80294c6de86346d948c95ef3c9fd478d906dc319 (patch) | |
tree | 1eabc73121d6c5cd113425a4fa4f94c206bfd73b | |
parent | 8b102bbeb32cf3de4e095f6e5e3d67156c12de2c (diff) |
org: Fix security prompt for downloading remote resourcearchive/debian/9.4.0+dfsg-1+deb11u2
* lisp/org.el (org--confirm-resource-safe): Do not assume that
resource is safe when user replies "n" (do not download).
Reported-by: Max Nikulin <manikulin@gmail.com>
Link: https://orgmode.org/list/upj6uk$b7o$1@ciao.gmane.io
(cherry picked from Emacs commit e56f0ef51bfdd0e03e817670754bc813fb3702a2)
Gbp-Pq: Name CVE-2024-30205_03.patch
-rw-r--r-- | lisp/org.el | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lisp/org.el b/lisp/org.el index fbcef9a..07ae99f 100644 --- a/lisp/org.el +++ b/lisp/org.el @@ -4817,7 +4817,7 @@ returns non-nil if any of them match." (if (and (= char ?f) current-file) (concat "file://" current-file) uri)) "\\'"))))) - (prog1 (memq char '(?y ?n ?! ?d ?\s ?f)) + (prog1 (memq char '(?y ?! ?d ?\s ?f)) (quit-window t))))))) (defun org-extract-log-state-settings (x) |