Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDF661184A-EB90-11EE-92FC-1C697A616631
HistoryMar 24, 2024 - 12:00 a.m.

emacs -- multiple vulnerabilities

2024-03-2400:00:00
vuxml.freebsd.org
7
emacs
security vulnerabilities
lisp code
untrusted content
mime
latex preview
remote files

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.2%

JSON

GNU Emacs developers report:

Emacs 29.3 is an emergency bugfix release intended to fix several security vulnerabilities.

Arbitrary Lisp code is no longer evaluated as part of turning on Org mode. This is for security reasons, to avoid evaluating malicious Lisp code.
New buffer-local variable ‘untrusted-content’. When this is non-nil, Lisp programs should treat buffer contents with extra caution.
Gnus now treats inline MIME contents as untrusted. To get back previous insecure behavior, ‘untrusted-content’ should be reset to nil in the buffer.
LaTeX preview is now by default disabled for email attachments. To get back previous insecure behavior, set the variable ‘org–latex-preview-when-risky’ to a non-nil value.
Org mode now considers contents of remote files to be untrusted. Remote files are recognized by calling ‘file-remote-p’.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchemacs< 29.3,3UNKNOWN
FreeBSDanynoarchemacs-canna< 29.3,3UNKNOWN
FreeBSDanynoarchemacs-nox< 29.3,3UNKNOWN

Related

openvas 7
mageia 1
nessus 8
debian 3
osv 2
redhatcve 4
cve 4
ubuntucve 4
veracode 4
nvd 4
cbl_mariner 7
debiancve 4
cvelist 4
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0104)
2024-04-05 00:00:00
Debian: Security Advisory (DLA-3801-1)
2024-04-30 00:00:00
openSUSE: Security Advisory for emacs (SUSE-SU-2024:1294-1)
2024-04-17 00:00:00
mageia
mageia
Updated emacs packages fix security vulnerabilities
2024-03-31 06:27:58
nessus
nessus
FreeBSD : emacs -- multiple vulnerabilities (f661184a-eb90-11ee-92fc-1c697a616631)
2024-03-27 00:00:00
Debian dla-3801 : emacs - security update
2024-04-29 00:00:00
Debian dla-3802 : elpa-org - security update
2024-04-30 00:00:00
debian
debian
[BSA-119] Security Update for emacs
2024-04-27 12:15:26
[SECURITY] [DLA 3801-1] emacs security update
2024-04-29 13:25:08
[SECURITY] [DLA 3802-1] org-mode security update
2024-04-30 09:30:29
osv
osv
org-mode - security update
2024-04-30 00:00:00
emacs - security update
2024-04-29 00:00:00
redhatcve
redhatcve
CVE-2024-30203
2024-05-14 04:25:37
CVE-2024-30202
2024-05-14 04:11:13
CVE-2024-30204
2024-05-14 04:25:47
cve
cve
CVE-2024-30204
2024-03-25 15:15:52
CVE-2024-30205
2024-03-25 15:15:52
CVE-2024-30202
2024-03-25 15:15:52
ubuntucve
ubuntucve
CVE-2024-30204
2024-03-25 00:00:00
CVE-2024-30202
2024-03-25 00:00:00
CVE-2024-30205
2024-03-25 00:00:00
veracode
veracode
Privacy Leakage
2024-04-05 22:36:03
Arbitrary Code Execution
2024-04-05 22:36:48
Trust Boundary Violation
2024-04-05 22:36:27
nvd
nvd
CVE-2024-30204
2024-03-25 15:15:52
CVE-2024-30202
2024-03-25 15:15:52
CVE-2024-30205
2024-03-25 15:15:52
cbl_mariner
cbl_mariner
CVE-2024-30202 affecting package emacs for versions less than 29.3-1
2024-04-09 20:48:36
CVE-2024-30202 affecting package emacs for versions less than 29.3-1
2024-04-17 22:02:46
CVE-2024-30205 affecting package emacs for versions less than 29.3-1
2024-04-09 20:48:36
debiancve
debiancve
CVE-2024-30202
2024-03-25 15:15:52
CVE-2024-30204
2024-03-25 15:15:52
CVE-2024-30203
2024-03-25 15:15:52
cvelist
cvelist
CVE-2024-30204
2024-03-25 00:00:00
CVE-2024-30202
2024-03-25 00:00:00
CVE-2024-30205
2024-03-25 00:00:00

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.2%

JSON
Related for F661184A-EB90-11EE-92FC-1C697A616631
openvas7mageia1nessus8debian3osv2redhatcve4cve4ubuntucve4veracode4nvd4cbl_mariner7debiancve4cvelist4