CVE-2024-39331

emacs: org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code

Description

In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.

INFO

Published Date :

2024-06-23T00:00:00.000Z

Last Modified :

2024-08-22T03:55:10.601Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2024-39331 vulnerability.

Vendors	Products
Gnu	Emacs
Redhat	Enterprise Linux Rhel Aus Rhel E4s Rhel Eus Rhel Tus

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-39331.

URL	Resource
https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29
https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=f4cc61636947b5c2f0afc67174dd369fe3277aa8
https://list.orgmode.org/87sex5gdqc.fsf%40localhost/
https://lists.debian.org/debian-lts-announce/2024/06/msg00023.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00024.html
https://lists.gnu.org/archive/html/info-gnu-emacs/2024-06/msg00000.html
https://news.ycombinator.com/item?id=40768225
https://nvd.nist.gov/vuln/detail/CVE-2024-39331
https://www.cve.org/CVERecord?id=CVE-2024-39331
https://www.openwall.com/lists/oss-security/2024/06/23/1
https://www.openwall.com/lists/oss-security/2024/06/23/2

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact