CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

References

Affected packages

Debian:11 / emacs

Package

Name: emacs
Purl: pkg:deb/debian/emacs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:27.1+1-3.1+deb11u6

Affected versions

1:27.*

1:27.1+1-3.1

1:27.1+1-3.1+deb11u1

1:27.1+1-3.1+deb11u2

1:27.1+1-3.1+deb11u3

1:27.1+1-3.1+deb11u4

1:27.1+1-3.1+deb11u5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / emacs

Package

Name: emacs
Purl: pkg:deb/debian/emacs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:28.2+1-15+deb12u4

Affected versions

1:28.*

1:28.2+1-15

1:28.2+1-15+deb12u1

1:28.2+1-15+deb12u2

1:28.2+1-15+deb12u3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / emacs

Package

Name: emacs
Purl: pkg:deb/debian/emacs?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:30.1+1-1

Affected versions

1:28.*

1:28.2+1-15

1:28.2+1-16

1:29.*

1:29.1+1-1

1:29.1+1-2

1:29.1+1-3

1:29.1+1-4

1:29.1+1-5~bpo12+1

1:29.1+1-5

1:29.2+1-1

1:29.2+1-2~bpo12+1

1:29.2+1-2

1:29.3+1-1

1:29.3+1-2~bpo12+1

1:29.3+1-2

1:29.3+1-3~bpo12+1

1:29.3+1-3

1:29.4+1-1

1:29.4+1-2~bpo12+1

1:29.4+1-2

1:29.4+1-3

1:29.4+1-4~bpo12+1

1:29.4+1-4

1:29.4+1-5

1:29.4+1-6

Ecosystem specific

{
    "urgency": "not yet assigned"
}