CVE-2024-53920

CVE-2024-53920

Name

CVE-2024-53920

Description

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
	https://git.savannah.gnu.org/cgit/emacs.git/tree/ChangeLog.4
	https://git.savannah.gnu.org/cgit/emacs.git/tag/?h=emacs-30.0.92
	https://eshelyaron.com/posts/2024-11-27-emacs-aritrary-code-execution-and-how-to-avoid-it.html
	https://yhetil.org/emacs/CAFXAjY5f4YfHAtZur1RAqH34UbYU56_t6t2Er0YEh1Sb7-W=hg%40mail.gmail.com/
	https://news.ycombinator.com/item?id=42256409
cve@mitre.org	https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-30.1
cve@mitre.org	https://yhetil.org/emacs/CAFXAjY5f4YfHAtZur1RAqH34UbYU56_t6t2Er0YEh1Sb7-W=hg@mail.gmail.com/
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/02/msg00033.html

Type

URI

https://git.savannah.gnu.org/cgit/emacs.git/tree/ChangeLog.4

https://git.savannah.gnu.org/cgit/emacs.git/tag/?h=emacs-30.0.92

https://eshelyaron.com/posts/2024-11-27-emacs-aritrary-code-execution-and-how-to-avoid-it.html

https://yhetil.org/emacs/CAFXAjY5f4YfHAtZur1RAqH34UbYU56_t6t2Er0YEh1Sb7-W=hg%40mail.gmail.com/

https://news.ycombinator.com/item?id=42256409

cve@mitre.org

https://git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-30.1

cve@mitre.org

https://yhetil.org/emacs/CAFXAjY5f4YfHAtZur1RAqH34UbYU56_t6t2Er0YEh1Sb7-W=hg@mail.gmail.com/

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/02/msg00033.html

Match rules

CPE URI	Source package	Min version	Max version
	n/a	== n/a	== n/a
`cpe:2.3:a:gnu:emacs:-:::::::*`	emacs	== 30.0.92	== 30.0.92
`cpe:2.3:a:gnu:emacs::::::::`	emacs	>= None	< 30.1

CPE URI

Source package

Min version

Max version

n/a

== n/a

cpe:2.3:a:gnu:emacs:-:*:*:*:*:*:*:*

emacs

== 30.0.92

cpe:2.3:a:gnu:emacs:*:*:*:*:*:*:*:*

emacs

>= None

< 30.1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
emacs	edge-community	29.4-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
emacs	edge-community	28.2-r9	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r8	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r7	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r6	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
emacs	edge-community	28.2-r3	None	possibly vulnerable
emacs	3.22-community	29.4-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
emacs	3.22-community	28.2-r6	None	possibly vulnerable
emacs	3.22-community	28.2-r5	None	possibly vulnerable
emacs	3.22-community	28.2-r3	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

emacs

edge-community

29.4-r0

Celeste <cielesti@protonmail.com>

possibly vulnerable

emacs

edge-community