Lucene search
+L

21 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in emacs

In elisp-mode.el of GNU Emacs prior to version 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion, allowing attackers to execute arbitrary code. This unsafe expansion also occurs if a user...

7.8CVSS7.5AI score0.00526EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/02/04 9:51 a.m.10 views

USN-8011-1: Emacs vulnerabilities

It was discovered that Emacs could trigger unsafe Lisp macro expansion, when a user invoked elisp-completion-at-point on untrusted Emacs Lisp source code. An attacker could possibly use this issue to execute arbitrary code. CVE-2024-53920 It was discovered that Emacs did not properly sanitize inp...

8.8CVSS6AI score0.0256EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

EulerOS Virtualization 2.10.0 : emacs (EulerOS-SA-2026-1163)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted...

8.8CVSS6.2AI score0.0256EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

EulerOS Virtualization 2.10.1 : emacs (EulerOS-SA-2026-1112)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted...

8.8CVSS6.2AI score0.0256EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: emacs (UTSA-2025-991095)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991095 advisory. In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger...

7.8CVSS8AI score0.00526EPSS
Exploits0References4
OSV
OSV
added 2025/11/28 12:51 p.m.6 views

OESA-2025-2760 emacs security update

Emacs is the extensible, customizable, self-documenting real-time display editor. At its core is an interpreter for Emacs Lisp, a dialect of the Lisp programming language with extensions to support text editing. And it is an entire ecosystem of functionality beyond text editing, including a proje...

7.8CVSS7.5AI score0.00526EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2016

Malware in sbrugna...

4CVSS6.4AI score0.02156EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-52189

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.00526EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.4 views

EulerOS Virtualization 2.13.0 : emacs (EulerOS-SA-2025-2155)

According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted...

7.8CVSS8.1AI score0.00526EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/03 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2025-1885)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.4 views

EulerOS 2.0 SP11 : emacs (EulerOS-SA-2025-1923)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source...

7.8CVSS8.1AI score0.00526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.6 views

EulerOS 2.0 SP11 : emacs (EulerOS-SA-2025-1949)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source...

7.8CVSS8.1AI score0.00526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.6 views

EulerOS 2.0 SP12 : emacs (EulerOS-SA-2025-1816)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source...

7.8CVSS8.1AI score0.00526EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/06/24 6:48 a.m.3 views

emacs: arbitrary code execution via Lisp macro expansion

A flaw was found in Emacs. Viewing or editing an untrusted Emacs Lisp source code file can cause arbitrary code execution due to unsafe macro expansion when a user has configured elisp-completion-at-point for code completion or has enabled automatic error checking, such as Flymake or Flycheck...

7.8CVSS6.2AI score0.00526EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/03/25 7:0 a.m.4 views

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

...

8.8CVSS7.9AI score0.00526EPSS
Exploits0
Amazon
Amazon
added 2025/02/25 12:0 a.m.5 views

Important: emacs

Issue Overview: In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs ...

7.8CVSS7.7AI score0.00526EPSS
Exploits0
Amazon
Amazon
added 2025/02/21 12:0 a.m.5 views

Important: emacs

Issue Overview: In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs ...

7.8CVSS7.6AI score0.00526EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/29 3:48 a.m.3 views

SUSE CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

7.8CVSS9.7AI score0.00526EPSS
Exploits0References9
OSV
OSV
added 2024/11/27 3:15 p.m.2 views

DEBIAN-CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

7.8CVSS8.2AI score0.00526EPSS
Exploits0References1
OSV
OSV
added 2024/11/27 3:15 p.m.6 views

AZL-53703 CVE-2024-53920 affecting package emacs for versions less than 29.4-3

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

7.8CVSS7.5AI score0.00526EPSS
Exploits0References1
Rows per page
Query Builder