diff options
| author | Mattias EngdegÄrd | 2020-10-26 12:40:51 +0100 |
|---|---|---|
| committer | Mattias EngdegÄrd | 2020-10-26 12:40:51 +0100 |
| commit | cdb3c9d662c772ce25ea4d803eccd2c9e6a6ae99 (patch) | |
| tree | 83eba19fc110680f0c5cc0cedc963256a65c2014 | |
| parent | a98bb620c4b4f483694239067b258242c5c7316e (diff) | |
| download | emacs-cdb3c9d662c772ce25ea4d803eccd2c9e6a6ae99.tar.gz emacs-cdb3c9d662c772ce25ea4d803eccd2c9e6a6ae99.zip | |
Don't consider play-sound-file to be a 'safe' function (bug#44018)
While there are currently no known security holes in play-sound-file,
the attack surface is considerable and historically audio file
processing has had more than its share of security problems; the
benefit to risk ratio is low.
* lisp/emacs-lisp/unsafep.el: Don't mark play-sound-file as safe.
| -rw-r--r-- | lisp/emacs-lisp/unsafep.el | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lisp/emacs-lisp/unsafep.el b/lisp/emacs-lisp/unsafep.el index e7077140e54..96db5c71939 100644 --- a/lisp/emacs-lisp/unsafep.el +++ b/lisp/emacs-lisp/unsafep.el | |||
| @@ -101,7 +101,7 @@ in the parse.") | |||
| 101 | ;;Macros from subr.el | 101 | ;;Macros from subr.el |
| 102 | save-match-data unless when | 102 | save-match-data unless when |
| 103 | ;;Functions from subr.el that have side effects | 103 | ;;Functions from subr.el that have side effects |
| 104 | split-string replace-regexp-in-string play-sound-file)) | 104 | split-string replace-regexp-in-string)) |
| 105 | (put x 'safe-function t)) | 105 | (put x 'safe-function t)) |
| 106 | 106 | ||
| 107 | ;;;###autoload | 107 | ;;;###autoload |