Lucene search
RedhatCVELIST:CVE-2023-2491HistoryMay 17, 2023 - 12:00 a.m.
CVE-2023-2491
2023-05-1700:00:00
CWE-77
redhat
www.cve.org
flaw
emacs
arbitrary command execution
org-mode code
ob-latex.el
security regression
red hat enterprise linux
A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the “org-babel-execute:latex” function in ob-latex.el can result in arbitrary command execution. This CVE exists because of a CVE-2023-28617 security regression for the emacs package in Red Hat Enterprise Linux 8.8 and Red Hat Enterprise Linux 9.2.
CNA Affected
[
{
"vendor": "n/a",
"product": "emacs",
"versions": [
{
"version": "Affects emacs v26.1-9.el8 and emacs v27.2-8.el9, Fixed in emacs v26.1-10.el8_8.2 and emacs v27.2-8.el9_2.1",
"status": "affected"
}
]
}
]Related
redhatcve
redhatcve
CVE-2023-2491
2023-05-03 12:16:44
CVE-2023-28617
2023-03-24 13:07:51
debiancve
debiancve
CVE-2023-2491
2023-05-17 22:15:10
CVE-2023-28617
2023-03-19 03:15:11
nessus
nessus
RHEL 8 : emacs (RHSA-2023:3104)
2023-05-16 00:00:00
AlmaLinux 8 : emacs (ALSA-2023:3104)
2023-05-19 00:00:00
Oracle Linux 8 : emacs (ELSA-2023-3104)
2023-05-25 00:00:00
nvd
nvd
CVE-2023-2491
2023-05-17 22:15:10
CVE-2023-28617
2023-03-19 03:15:11
cve
cve
CVE-2023-2491
2023-05-17 22:15:10
CVE-2023-28617
2023-03-19 03:15:11
almalinux
almalinux
Important: emacs security update
2023-05-16 00:00:00
Important: emacs security update
2023-05-02 00:00:00
Important: emacs security update
2023-04-24 00:00:00
ubuntucve
ubuntucve
CVE-2023-2491
2023-05-17 00:00:00
CVE-2023-28617
2023-03-19 00:00:00
prion
prion
Command injection
2023-05-17 22:15:00
Design/Logic Flaw
2023-03-19 03:15:00
redhat
redhat
(RHSA-2023:3104) Important: emacs security update
2023-05-16 09:15:26
(RHSA-2023:3189) Important: emacs security update
2023-05-17 15:12:59
(RHSA-2023:2074) Important: emacs security update
2023-05-02 07:07:42
osv
osv
Important: emacs security update
2023-05-16 00:00:00
Important: emacs security update
2023-04-26 15:28:03
CVE-2023-28617
2023-03-19 03:15:11
cvelist
cvelist
CVE-2023-28617
2023-03-19 00:00:00
oraclelinux
oraclelinux
emacs security update
2023-04-24 00:00:00
emacs security update
2023-05-02 00:00:00
emacs security update
2023-05-25 00:00:00
rocky
rocky
emacs security update
2023-05-05 15:41:01
emacs security update
2023-04-26 15:28:03
cbl_mariner
cbl_mariner
CVE-2023-28617 affecting package emacs for versions less than 28.2-5
2023-03-30 01:18:53
openvas
openvas
Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2639)
2023-09-05 00:00:00
Mageia: Security Advisory (MGASA-2023-0152)
2023-04-24 00:00:00
Debian: Security Advisory (DLA-3616-1)
2023-10-13 00:00:00
veracode
veracode
OS Command Injection
2023-08-06 07:40:29
debian
debian
[SECURITY] [DLA 3616-1] org-mode security update
2023-10-12 11:09:58
[SECURITY] [DLA 3416-1] emacs security update
2023-05-09 23:02:24
amazon
amazon
Important: emacs
2023-04-13 19:28:00
mageia
mageia
Updated emacs packages fix security vulnerability
2023-04-24 03:20:26
ubuntu
ubuntu
Emacs vulnerability
2023-04-06 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-09-28 07:46:35
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-09-28 07:49:45