Fluid Attacks Database

Description

In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	emacs	=1:27.1+1-3.1 \|\| =1:27.1+1-3.1+deb11u1 \|\| =1:27.1+1-3.1+deb11u2 \|\| =1:27.1+1-3.1+deb11u3 \|\| =1:27.1+1-3.1+deb11u4 \|\| >=0 <1:27.1+1-3.1+deb11u5	1:27.1+1-3.1+deb11u5
debian 11	org-mode	=9.4.0+dfsg-1 \|\| =9.4.0+dfsg-1+deb11u1 \|\| =9.4.0+dfsg-1+deb11u2 \|\| >=0 <9.4.0+dfsg-1+deb11u3	9.4.0+dfsg-1+deb11u3
debian 12	emacs	=1:28.2+1-15 \|\| =1:28.2+1-15+deb12u1 \|\| =1:28.2+1-15+deb12u2 \|\| >=0 <1:28.2+1-15+deb12u3	1:28.2+1-15+deb12u3
debian 12	org-mode	=9.5.2+dfsh-5 \|\| =9.6.10+dfsg-1 \|\| =9.6.21+dfsg-1 \|\| =9.6.23+dfsg-1 \|\| =9.6.28+dfsg-1 \|\| =9.6.6+dfsg-1~exp1 \|\| =9.6.7+dfsg-1 \|\| =9.6.8+dfsg-1 \|\| =9.6.9+dfsg-1 \|\| =9.7.11+dfsg-1 \|\| =9.7.13+dfsg-1 \|\| =9.7.15+dfsg-1 \|\| =9.7.16+dfsg-1 \|\| =9.7.19+dfsg-1 \|\| =9.7.25+dfsg-1 \|\| =9.7.27+dfsg-1 \|\| =9.7.29+dfsg-1 \|\| =9.7.34+dfsg-1 \|\| =9.7.36+dfsg-1 \|\| =9.7.5+dfsg-1 \|\| =9.7.6+dfsg-1 \|\| =9.7.6+dfsg-2 \|\| =9.8.2+dfsg-1 \|\| =9.8.3+dfsg-1	-
debian 13	emacs	>=0 <1:29.4+1-1	1:29.4+1-1
debian 13	org-mode	>=0 <9.7.5+dfsg-1	9.7.5+dfsg-1
debian 14	emacs	>=0 <1:29.4+1-1	1:29.4+1-1
debian 14	org-mode	>=0 <9.7.5+dfsg-1	9.7.5+dfsg-1
rpm rhel9	emacs	<1:27.2-10.el9_4	1:27.2-10.el9_4
rpm rhel6	emacs	-	-

1-10 of 14

Aliases

1. CVE-2024-393312. NVD-2024-393313. OSV-DEBIAN-2024-393314. OSV-2024-393315. SECURITY-TRACKER-CVE-2024-39331

References

1. https://git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=f4cc61636947b5c2f0afc67174dd369fe3277aa82. https://list.orgmode.org/87sex5gdqc.fsf%40localhost/3. https://lists.gnu.org/archive/html/info-gnu-emacs/2024-06/msg00000.html4. https://news.ycombinator.com/item?id=407682255. https://www.openwall.com/lists/oss-security/2024/06/23/16. https://www.openwall.com/lists/oss-security/2024/06/23/2

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.