8 matches found
Emacs: Multiple Vulnerabilities
Background Emacs is the extensible, customizable, self-documenting real-time display editor. org-mode is an Emacs mode for notes and project planning. Description Multiple vulnerabilities have been discovered in Emacs, org-mode. Please review the CVE identifiers referenced below for details. Impa...
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for Watson AIOps version 4.2.0 Vulnerability Details CVEID:CVE-2023-24539 DESCRIPTION: Go is vulnerable to HTML injection. A remote attacker could inject malicious HTML code into a template containing multiple actions separated by a...
EulerOS Virtualization 2.12.1 : emacs (EulerOS-SA-2024-2749)
According to the versions of the emacs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %... link abbrev even when it specifies an unsafe function, such...
Improper Input Validation
emacs is vulnerable to Improper Input Validation. The vulnerability is due to a flaw in the processing logic of Emacs Org mode, allows attackers to potentially exploit trust assumptions in Emacs Org mode, as it incorrectly treats the contents of remote files as trusted without appropriate...
SUSE CVE-2024-30205
In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23...
Unspecified vulnerability in Gnu emacs (CNVD-2025-15364)
Gnu emacs is a family of text editors in the American GNU community. A security vulnerability exists in Gnu emacs that stems from the fact that arbitrary Lisp code is evaluated as part of the open Org mode. No details of the vulnerability are provided at this time...
Important: emacs
Issue Overview: org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters. CVE-2023-28617 Affected Packages: emacs Note: This advisory is applicable to Amazon...
Fedora: Security Advisory for pandoc (FEDORA-2022-1f981071eb)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...