UBUNTU-CVE-2024-53920

Source
https://ubuntu.com/security/CVE-2024-53920
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-53920.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-53920
Related
  • CVE-2024-53920
Published
2024-11-27T15:15:00Z
Modified
2024-11-28T04:31:40Z
Summary
[none]
Details

In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

References

Affected packages

Ubuntu:Pro:16.04:LTS / emacs24

Package

Name
emacs24
Purl
pkg:deb/ubuntu/emacs24?arch=src?distro=esm-infra/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

24.*

24.5+1-1ubuntu2
24.5+1-1ubuntu4
24.5+1-1ubuntu5
24.5+1-1ubuntu6
24.5+1-1ubuntu7
24.5+1-6ubuntu1
24.5+1-6ubuntu1.1
24.5+1-6ubuntu1.1+esm1
24.5+1-6ubuntu1.1+esm2
24.5+1-6ubuntu1.1+esm3
24.5+1-6ubuntu1.1+esm4

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.22-4ubuntu3
21.4.22-14ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.2-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / emacs25

Package

Name
emacs25
Purl
pkg:deb/ubuntu/emacs25?arch=src?distro=esm-infra/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

25.*

25.2+1-6
25.2+1-6ubuntu0.1~esm2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.24-4ubuntu1
21.4.24-5ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.2-4

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / emacs

Package

Name
emacs
Purl
pkg:deb/ubuntu/emacs?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:26.*

1:26.3+1-1ubuntu1
1:26.3+1-1ubuntu2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.24-8build1
21.4.24-9

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.2-4
2009.02.17.dfsg.2-5

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / emacs

Package

Name
emacs
Purl
pkg:deb/ubuntu/emacs?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:27.*

1:27.1+1-3ubuntu3
1:27.1+1-3ubuntu5
1:27.1+1-3ubuntu5.1
1:27.1+1-3ubuntu5.2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.24-9ubuntu2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.2-5

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / emacs

Package

Name
emacs
Purl
pkg:deb/ubuntu/emacs?arch=src?distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:29.*

1:29.3+1-1ubuntu2
1:29.3+1-2ubuntu1
1:29.3+1-3ubuntu1
1:29.4+1-1ubuntu1
1:29.4+1-2ubuntu1
1:29.4+1-3ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.24-12build3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.3-3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / emacs

Package

Name
emacs
Purl
pkg:deb/ubuntu/emacs?arch=src?distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:29.*

1:29.1+1-5ubuntu1
1:29.2+1-1ubuntu1
1:29.2+1-2ubuntu4
1:29.3+1-1ubuntu2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / xemacs21

Package

Name
xemacs21
Purl
pkg:deb/ubuntu/xemacs21?arch=src?distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.4.24-12
21.4.24-12build2
21.4.24-12build3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / xemacs21-packages

Package

Name
xemacs21-packages
Purl
pkg:deb/ubuntu/xemacs21-packages?arch=src?distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2009.*

2009.02.17.dfsg.3-2
2009.02.17.dfsg.3-3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}