Lucene search
K

5 matches found

Ubuntu
Ubuntu
added 2026/02/04 9:51 a.m.9 views

USN-8011-1: Emacs vulnerabilities

It was discovered that Emacs could trigger unsafe Lisp macro expansion, when a user invoked elisp-completion-at-point on untrusted Emacs Lisp source code. An attacker could possibly use this issue to execute arbitrary code. CVE-2024-53920 It was discovered that Emacs did not properly sanitize inp...

8.8CVSS6AI score0.02679EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.6 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : Emacs vulnerabilities (USN-8011-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8011-1 advisory. It was discovered that Emacs could trigger unsafe Lisp macro expansion, when a user invoked elisp- completion-at-point on untrust...

8.8CVSS8.2AI score0.02679EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 4: emacs (TSSA-2025:0303)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0303 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.8CVSS8.1AI score0.00526EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/12 10:29 a.m.7 views

emacs: arbitrary code execution via Lisp macro expansion

A flaw was found in Emacs. Viewing or editing an untrusted Emacs Lisp source code file can cause arbitrary code execution due to unsafe macro expansion when a user has configured elisp-completion-at-point for code completion or has enabled automatic error checking, such as Flymake or Flycheck...

7.8CVSS6.2AI score0.00526EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/11/29 3:48 a.m.1 views

SUSE CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. This unsafe expansion also occurs if a user chooses to...

7.8CVSS9.7AI score0.00526EPSS
Exploits0References9
Rows per page
Query Builder