In Emacs before 29.3, Org mode considers contents of remote files to be
trusted. This affects Org Mode before 9.6.23.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | emacs | < any | UNKNOWN |
ubuntu | 22.04 | noarch | emacs | < any | UNKNOWN |
ubuntu | 24.04 | noarch | emacs | < any | UNKNOWN |
ubuntu | 16.04 | noarch | emacs24 | < any | UNKNOWN |
ubuntu | 18.04 | noarch | emacs25 | < any | UNKNOWN |
ubuntu | 18.04 | noarch | org-mode | < any | UNKNOWN |
ubuntu | 20.04 | noarch | org-mode | < any | UNKNOWN |
ubuntu | 22.04 | noarch | org-mode | < any | UNKNOWN |
ubuntu | 24.04 | noarch | org-mode | < any | UNKNOWN |
ubuntu | 16.04 | noarch | org-mode | < any | UNKNOWN |
git.savannah.gnu.org/cgit/emacs.git/commit/?h=emacs-29&id=2bc865ace050ff118db43f01457f95f95112b877
git.savannah.gnu.org/cgit/emacs.git/tree/etc/NEWS?h=emacs-29
git.savannah.gnu.org/cgit/emacs/org-mode.git/commit/?id=4255d5dcc0657915f90e4fba7e0a5514cced514d
launchpad.net/bugs/cve/CVE-2024-30205
list.orgmode.org/[email protected]/T/#t
lists.gnu.org/archive/html/info-gnu/2024-03/msg00005.html
nvd.nist.gov/vuln/detail/CVE-2024-30205
security-tracker.debian.org/tracker/CVE-2024-30205
www.cve.org/CVERecord?id=CVE-2024-30205
www.openwall.com/lists/oss-security/2024/03/24/1