CVE-2024-53920

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

References

Affected packages

Git / git.savannah.gnu.org/git/emacs.git

Affected ranges

Type: GIT
Repo: https://git.savannah.gnu.org/git/emacs.git
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

8ac894e2246f25d2a2a97d866b10e6e0b0fede5a

Affected versions

emacs-19.*

emacs-19.34

emacs-20.*

emacs-20.1

emacs-20.2

emacs-20.3

emacs-20.4

emacs-22.*

emacs-22.1

emacs-22.2

emacs-22.3

emacs-23.*

emacs-23.2

emacs-23.3

emacs-23.4

emacs-24.*

emacs-24.0.96

emacs-24.0.97

emacs-24.1

emacs-24.2

emacs-24.2.90

emacs-24.2.91

emacs-24.2.92

emacs-24.2.93

emacs-24.3

emacs-24.3-rc1

emacs-24.3.90

emacs-24.3.91

emacs-24.3.92

emacs-24.3.93

emacs-24.3.94

emacs-24.4

emacs-24.4-rc1

emacs-24.4.90

emacs-24.4.91

emacs-24.5

emacs-24.5-rc1

emacs-24.5-rc2

emacs-24.5-rc3

emacs-24.5-rc3-fixed

emacs-25.*

emacs-25.0.90

emacs-25.0.91

emacs-25.0.92

emacs-25.0.93

emacs-25.0.94

emacs-25.0.95

emacs-25.1

emacs-25.1-rc1

emacs-25.1-rc2

emacs-25.1.90

emacs-25.1.91

emacs-25.2

emacs-25.2-rc1

emacs-25.2-rc2

emacs-26.*

emacs-26.0.90

emacs-26.0.91

emacs-26.1

emacs-26.1-rc1

emacs-26.1.90

emacs-26.1.91

emacs-26.1.92

emacs-26.2

emacs-26.2.90

emacs-26.3

emacs-26.3-rc1

emacs-27.*

emacs-27.0.90

emacs-27.0.91

emacs-27.1

emacs-27.1-rc1

emacs-27.1-rc2

emacs-27.1.90

emacs-27.1.91

emacs-27.2

emacs-27.2-rc1

emacs-27.2-rc2

emacs-28.*

emacs-28.0.90

emacs-28.0.91

emacs-28.0.92

emacs-28.1

emacs-28.1.90

emacs-28.1.91

emacs-28.2

emacs-28.3-rc1

emacs-29.*

emacs-29.0.90

emacs-29.0.91

emacs-29.0.92

emacs-29.1

emacs-29.1-rc1

emacs-29.1.90

emacs-29.2

emacs-29.3

emacs-29.4

emacs-30.*

emacs-30.0.90

emacs-30.0.91

emacs-30.0.92

emacs-30.0.93

emacs-30.1-rc1

emacs-pretest-21.*

emacs-pretest-21.0.100

emacs-pretest-21.0.101

emacs-pretest-21.0.102

emacs-pretest-21.0.103

emacs-pretest-21.0.104

emacs-pretest-21.0.105

emacs-pretest-21.0.106

emacs-pretest-21.0.90

emacs-pretest-21.0.91

emacs-pretest-21.0.92

emacs-pretest-21.0.93

emacs-pretest-21.0.95

emacs-pretest-21.0.96

emacs-pretest-21.0.97

emacs-pretest-21.0.98

emacs-pretest-21.0.99

emacs-pretest-22.*

emacs-pretest-22.0.90

emacs-pretest-22.0.91

emacs-pretest-22.0.92

emacs-pretest-22.0.93

emacs-pretest-22.0.94

emacs-pretest-22.0.95

emacs-pretest-22.0.96

emacs-pretest-22.0.97

emacs-pretest-22.0.98

emacs-pretest-22.0.99

emacs-pretest-22.0.990

emacs-pretest-22.1.90

emacs-pretest-22.1.91

emacs-pretest-22.1.92

emacs-pretest-22.2.90

emacs-pretest-22.2.91

emacs-pretest-22.2.92

emacs-pretest-23.*

emacs-pretest-23.0.90

emacs-pretest-23.0.91

emacs-pretest-23.0.92

emacs-pretest-23.0.93

emacs-pretest-23.0.94

emacs-pretest-23.0.95

emacs-pretest-23.1.90

emacs-pretest-23.1.91

emacs-pretest-23.1.92

emacs-pretest-23.1.93

emacs-pretest-23.1.94

emacs-pretest-23.1.95

emacs-pretest-23.1.96

emacs-pretest-23.1.97

emacs-pretest-23.2.90

emacs-pretest-23.2.91

emacs-pretest-23.2.92

emacs-pretest-23.2.93

emacs-pretest-23.2.93.1

emacs-pretest-23.2.94

emacs-pretest-23.3.90

emacs-pretest-24.*

emacs-pretest-24.0.05

emacs-pretest-24.0.90

emacs-pretest-24.0.91

emacs-pretest-24.0.92

emacs-pretest-24.0.93

emacs-pretest-24.0.94

emacs-pretest-24.0.95

mh-e-8.*

mh-e-8.0

mh-e-8.0.1

mh-e-8.0.2

mh-e-8.0.3

mh-e-8.1

mh-e-8.2

mh-e-8.2.90

mh-e-8.2.91

mh-e-8.2.92

mh-e-8.2.93

mh-e-8.3

mh-e-8.3.1

mh-e-8.4

mh-e-8.5

mh-e-8.6

mh-e-doc-8.*

mh-e-doc-8.0

mh-e-doc-8.0.1

mh-e-doc-8.0.3

mh-e-doc-8.1

mh-e-doc-8.2

mh-e-doc-8.3

mh-e-doc-8.4

mh-e-doc-8.5

Other

ttn-vms-21-2-B4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-53920.json"