GNU Org Mode
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in GNU Org Mode.
By the Year
In 2025 there have been 0 vulnerabilities in GNU Org Mode. Last year, in 2024 Org Mode had 4 security vulnerabilities published. Right now, Org Mode is on track to have less security vulnerabilities in 2025 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 4 | 0.00 |
| 2023 | 1 | 7.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Org Mode vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent GNU Org Mode Security Vulnerabilities
In Emacs before 29.3, Org mode considers contents of remote files to be trusted
CVE-2024-30205
- March 25, 2024
In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23.
In Emacs before 29.3
CVE-2024-30204
- March 25, 2024
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
In Emacs before 29.3
CVE-2024-30203
- March 25, 2024
In Emacs before 29.3, Gnus treats inline MIME contents as trusted.
In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode
CVE-2024-30202
- March 25, 2024
In Emacs before 29.3, arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23.
org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name
CVE-2023-28617
7.8 - High
- March 19, 2023
org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters.
Shell injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Canonical Ubuntu Linux or by GNU? Click the Watch button to subscribe.
