Astra Linux – Vulnerability in emacs

In Emacs versions before 29.3, arbitrary Lisp code is evaluated as part of enabling the Org mode. This affects Org Mode in versions prior to 9.6.23...

Astra Linux - уязвимость в emacs

In Emacs versions before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbreviation even when it specifies an unsafe function, such as shell-command-to-string. This issue affects Org Mode before 9.7.5...

Astra Linux – Vulnerability in emacs

org-babel-execute: latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters...

Astra Linux – Vulnerability in emacs

In Emacs versions before 29.3, the Org mode considers the contents of remote files to be trustworthy. This affects Org Mode in versions prior to 9.6.23...

MiracleLinux 9 : emacs-27.2-6.el9.1 (AXSA:2023-5326:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5326:02 advisory. emacs: command injection vulnerability in org-mode CVE-2023-28617 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

MiracleLinux 8 : emacs-26.1-7.el8.1 (AXSA:2023-5311:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5311:01 advisory. emacs: command injection vulnerability in org-mode CVE-2023-28617 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

TencentOS Server 4: emacs (TSSA-2024:0619)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0619 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

EUVD-2023-33975

Malicious code in bioql PyPI...

EUVD-2023-32285

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-28617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name...

TencentOS Server 4: emacs (TSSA-2024:0618)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0618 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 4: emacs (TSSA-2024:0283)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0283 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Emacs: Multiple Vulnerabilities

Background Emacs is the extensible, customizable, self-documenting real-time display editor. org-mode is an Emacs mode for notes and project planning. Description Multiple vulnerabilities have been discovered in Emacs, org-mode. Please review the CVE identifiers referenced below for details. Impa...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2025-1445)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Alibaba Cloud Linux 3 : 0206: emacs (ALINUX3-SA-2024:0206)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0206 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-39331: In Emacs before 29.4,...

emacs security update

An update is available for emacs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GNU Emacs is a powerful, customizable, self-documenting text editor. It provide...

RLSA-2024:6987 Moderate: emacs security update

GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the capability to read e-mail and news. Security Fixes: emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: Org mode considers...

Advisory ROSA-SA-2025-2796

Software: emacs 26.1 OS: ROSA Virtualization 3.0 packageevrstring: emacs-26.1-13.rv30 CVE-ID: CVE-2024-30203 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: In Emacs, a vulnerability in Gnus allows embedded MIME content to be treated as trusted. CVE-STATUS: The vulnerability has been resolved CVE-REV: T...

Ubuntu: Security Advisory (USN-7375-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7375-1 org-mode vulnerabilities

It was discovered that Org Mode did not correctly handle filenames containing shell metacharacters. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. CVE-2023-28617 It was discovered that Org Mode could run...