CVE-2024-39331 – In Emacs before 29.4, org-link-expand-abbrev in li

CVE ID : CVE-2024-39331

Published : June 23, 2024, 10:15 p.m. | 1 hour, 5 minutes ago

Description : In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(…) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…CVE ID : CVE-2024-39331

Published : June 23, 2024, 10:15 p.m. | 1 hour, 5 minutes ago

Description : In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(…) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…