3 matches found
CLSA-2025-1752088235 emacs: Fix of CVE-2024-39331
CVE-2024-39331: fix org-link-expand-abbrev to not expand unsafe link abbreviations...
CLSA-2024-1728934930 emacs: Fix of CVE-2024-39331
CVE-2024-39331: do not expand link abbrevs that contain unsafe function...
PT-2024-4296
Name of the Vulnerable Software and Affected Versions Emacs versions prior to 29.4 Org Mode versions prior to 9.7.5 Description The issue arises from the expansion of a %... link abbrev by the org-link-expand-abbrev function in lisp/ol.el, even when it specifies an unsafe function like...