UBUNTU-CVE-2024-53920
- Source
- https://ubuntu.com/security/CVE-2024-53920
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-53920.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-53920
- Upstream
- Published
- 2024-11-27T15:15:00Z
- Modified
- 2025-09-08T17:05:35Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)
- References
-
- https://ubuntu.com/security/CVE-2024-53920
- https://www.cve.org/CVERecord?id=CVE-2024-53920
- https://eshelyaron.com/posts/2024-11-27-emacs-aritrary-code-execution-and-how-to-avoid-it.html
- https://git.savannah.gnu.org/cgit/emacs.git/tag/?h=emacs-30.0.92
- https://git.savannah.gnu.org/cgit/emacs.git/tree/ChangeLog.4
- https://news.ycombinator.com/item?id=42256409
- https://yhetil.org/emacs/CAFXAjY5f4YfHAtZur1RAqH34UbYU56_t6t2Er0YEh1Sb7-W=hg%40mail.gmail.com/
Affected packages
Ubuntu:Pro:16.04:LTS / emacs24
Package
- Name
- emacs24
- Purl
- pkg:deb/ubuntu/emacs24@24.5+1-6ubuntu1.1+esm4?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
24.*
24.5+1-1ubuntu2
24.5+1-1ubuntu4
24.5+1-1ubuntu5
24.5+1-1ubuntu6
24.5+1-1ubuntu7
24.5+1-6ubuntu1
24.5+1-6ubuntu1.1
24.5+1-6ubuntu1.1+esm1
24.5+1-6ubuntu1.1+esm2
24.5+1-6ubuntu1.1+esm3
24.5+1-6ubuntu1.1+esm4
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs24",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
},
{
"binary_name": "emacs24-bin-common",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
},
{
"binary_name": "emacs24-common",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
},
{
"binary_name": "emacs24-el",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
},
{
"binary_name": "emacs24-lucid",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
},
{
"binary_name": "emacs24-nox",
"binary_version": "24.5+1-6ubuntu1.1+esm4"
}
]
}
Ubuntu:Pro:16.04:LTS / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.22-14ubuntu1?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.22-14ubuntu1"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.22-14ubuntu1"
}
]
}
Ubuntu:Pro:16.04:LTS / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.2-2?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.2-2"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.2-2"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.2-2"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.2-2"
}
]
}
Ubuntu:Pro:18.04:LTS / emacs25
Package
- Name
- emacs25
- Purl
- pkg:deb/ubuntu/emacs25@25.2+1-6ubuntu0.1~esm2?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs25",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
},
{
"binary_name": "emacs25-bin-common",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
},
{
"binary_name": "emacs25-common",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
},
{
"binary_name": "emacs25-el",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
},
{
"binary_name": "emacs25-lucid",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
},
{
"binary_name": "emacs25-nox",
"binary_version": "25.2+1-6ubuntu0.1~esm2"
}
]
}
Ubuntu:Pro:18.04:LTS / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.24-5ubuntu1?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.24-5ubuntu1"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.24-5ubuntu1"
}
]
}
Ubuntu:Pro:18.04:LTS / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.2-4?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.2-4"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.2-4"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.2-4"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.2-4"
}
]
}
Ubuntu:Pro:20.04:LTS / emacs
Package
- Name
- emacs
- Purl
- pkg:deb/ubuntu/emacs@1:26.3+1-1ubuntu2+esm1?arch=source&distro=esm-apps/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-bin-common",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-common",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-el",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-gtk",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-lucid",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
},
{
"binary_name": "emacs-nox",
"binary_version": "1:26.3+1-1ubuntu2+esm1"
}
]
}
Ubuntu:Pro:20.04:LTS / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.24-9?arch=source&distro=esm-apps/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.24-9"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.24-9"
}
]
}
Ubuntu:Pro:20.04:LTS / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.2-5?arch=source&distro=esm-apps/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.2-5"
}
]
}
Ubuntu:22.04:LTS / emacs
Package
- Name
- emacs
- Purl
- pkg:deb/ubuntu/emacs@1:27.1+1-3ubuntu5.2?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:27.*
1:27.1+1-3ubuntu3
1:27.1+1-3ubuntu5
1:27.1+1-3ubuntu5.1
1:27.1+1-3ubuntu5.2
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-bin-common",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-common",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-el",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-gtk",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-lucid",
"binary_version": "1:27.1+1-3ubuntu5.2"
},
{
"binary_name": "emacs-nox",
"binary_version": "1:27.1+1-3ubuntu5.2"
}
]
}
Ubuntu:22.04:LTS / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.24-9ubuntu2?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.24-9ubuntu2"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.24-9ubuntu2"
}
]
}
Ubuntu:22.04:LTS / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.2-5?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.2-5"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.2-5"
}
]
}
Ubuntu:24.04:LTS / emacs
Package
- Name
- emacs
- Purl
- pkg:deb/ubuntu/emacs@1:29.3+1-1ubuntu2?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-bin-common",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-common",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-el",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-gtk",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-lucid",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-nox",
"binary_version": "1:29.3+1-1ubuntu2"
},
{
"binary_name": "emacs-pgtk",
"binary_version": "1:29.3+1-1ubuntu2"
}
]
}
Ubuntu:24.04:LTS / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.24-12build3?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.24-12build3"
}
]
}
Ubuntu:24.04:LTS / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.3-3?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.3-3"
}
]
}
Ubuntu:25.04 / emacs
Package
- Name
- emacs
- Purl
- pkg:deb/ubuntu/emacs@1:30.1+1-5ubuntu1?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:29.*
1:29.4+1-3ubuntu1
1:29.4+1-4ubuntu1
1:29.4+1-5ubuntu1
1:29.4+1-6ubuntu3
1:30.*
1:30.1+1-4ubuntu1
1:30.1+1-5ubuntu1
Ecosystem specific
{
"binaries": [
{
"binary_name": "emacs",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-bin-common",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-common",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-el",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-gtk",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-lucid",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-nox",
"binary_version": "1:30.1+1-5ubuntu1"
},
{
"binary_name": "emacs-pgtk",
"binary_version": "1:30.1+1-5ubuntu1"
}
]
}
Ubuntu:25.04 / xemacs21
Package
- Name
- xemacs21
- Purl
- pkg:deb/ubuntu/xemacs21@21.4.24-12build3?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-bin",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-mule",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-mule-canna-wnn",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-nomule",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-support",
"binary_version": "21.4.24-12build3"
},
{
"binary_name": "xemacs21-supportel",
"binary_version": "21.4.24-12build3"
}
]
}
Ubuntu:25.04 / xemacs21-packages
Package
- Name
- xemacs21-packages
- Purl
- pkg:deb/ubuntu/xemacs21-packages@2009.02.17.dfsg.3-3?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "xemacs21-basesupport",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-basesupport-el",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-mulesupport",
"binary_version": "2009.02.17.dfsg.3-3"
},
{
"binary_name": "xemacs21-mulesupport-el",
"binary_version": "2009.02.17.dfsg.3-3"
}
]
}