Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 934736 (CVE-2024-39331) - <app-editors/emacs-{26.3-r19,27.2-r17,28.2-r13,29.3-r3}, <app-emacs/org-mode-9.7.5: org-mode command execution vulnerability
Summary: <app-editors/emacs-{26.3-r19,27.2-r17,28.2-r13,29.3-r3}, <app-emacs/org-mode-...
Status: IN_PROGRESS
Alias: CVE-2024-39331
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [stable]
Keywords:
: 934738 934741 (view as bug list)
Depends on: 934746 934744
Blocks:
  Show dependency tree
 
Reported: 2024-06-22 16:43 UTC by Sam James
Modified: 2024-06-29 20:12 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Larry the Git Cow gentoo-dev 2024-06-22 19:11:21 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1517a3daa51dfa707d64365fb681e15ae7c90a1d

commit 1517a3daa51dfa707d64365fb681e15ae7c90a1d
Author:     Ulrich Müller <ulm@gentoo.org>
AuthorDate: 2024-06-22 19:02:41 +0000
Commit:     Ulrich Müller <ulm@gentoo.org>
CommitDate: 2024-06-22 19:10:41 +0000

    app-editors/emacs: Backport org-mode fix from Emacs 29.4
    
    Bug: https://bugs.gentoo.org/934736
    Signed-off-by: Ulrich Müller <ulm@gentoo.org>

 app-editors/emacs/Manifest              |   3 +
 app-editors/emacs/emacs-26.3-r19.ebuild | 382 ++++++++++++++++++++++
 app-editors/emacs/emacs-27.2-r17.ebuild | 449 ++++++++++++++++++++++++++
 app-editors/emacs/emacs-28.2-r13.ebuild | 544 ++++++++++++++++++++++++++++++++
 4 files changed, 1378 insertions(+)

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1da683c58980d2309322d6e4a6a8dc4791dca923

commit 1da683c58980d2309322d6e4a6a8dc4791dca923
Author:     Ulrich Müller <ulm@gentoo.org>
AuthorDate: 2024-06-22 17:57:48 +0000
Commit:     Ulrich Müller <ulm@gentoo.org>
CommitDate: 2024-06-22 19:10:39 +0000

    app-editors/emacs: add 29.4
    
    Bug: https://bugs.gentoo.org/934736
    Signed-off-by: Ulrich Müller <ulm@gentoo.org>

 app-editors/emacs/Manifest          |   2 +
 app-editors/emacs/emacs-29.4.ebuild | 631 ++++++++++++++++++++++++++++++++++++
 2 files changed, 633 insertions(+)
Comment 2 Larry the Git Cow gentoo-dev 2024-06-23 10:14:13 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4554e0e224b1a967661ebb5b63b1d35b544617c5

commit 4554e0e224b1a967661ebb5b63b1d35b544617c5
Author:     Ulrich Müller <ulm@gentoo.org>
AuthorDate: 2024-06-23 10:09:36 +0000
Commit:     Ulrich Müller <ulm@gentoo.org>
CommitDate: 2024-06-23 10:13:15 +0000

    app-editors/emacs: Backport org-mode fix from Emacs 29.4
    
    Bug: https://bugs.gentoo.org/934736
    Signed-off-by: Ulrich Müller <ulm@gentoo.org>

 app-editors/emacs/Manifest             |   1 +
 app-editors/emacs/emacs-29.3-r3.ebuild | 631 +++++++++++++++++++++++++++++++++
 2 files changed, 632 insertions(+)
Comment 3 Ulrich Müller gentoo-dev 2024-06-29 20:11:20 UTC 
*** Bug 934738 has been marked as a duplicate of this bug. ***
Comment 4 Ulrich Müller gentoo-dev 2024-06-29 20:12:30 UTC 
*** Bug 934741 has been marked as a duplicate of this bug. ***