branch: externals/org commit 51aff8a11bd660c1b9ae00efbaa91d9a90f245cc Author: Max Nikulin <maniku...@gmail.com> Commit: Ihor Radchenko <yanta...@posteo.net>
test-org-macro.el: Add test for CVE-2024-30202 * testing/lisp/test-org-macro.el (test-org-macro/initialize-templates): A new test that no code is evaluated when an Org file is opened (CVE-2024-30202). Ihor Radchenko [ANN] Emergency bugfix release: Org mode 9.6.23. Sun, 24 Mar 2024 17:16:50 +0000. <https://list.orgmode.org/871q7zbldp.fsf@localhost> --- testing/lisp/test-org-macro.el | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/testing/lisp/test-org-macro.el b/testing/lisp/test-org-macro.el index 3339945fa1..cb98f42e86 100644 --- a/testing/lisp/test-org-macro.el +++ b/testing/lisp/test-org-macro.el @@ -22,6 +22,21 @@ ;;; Macros +(ert-deftest test-org-macro/initialize-templates () + "Test `org-macro-initialize-templates'." + ;; No code is executed during loading of Org mode files." + (should + (org-test-with-temp-text + "#+MACRO: title (eval (eval-and-compile (error \"CVE-2024-30202\")))" + (progn + (org-macro-initialize-templates) + t))) + (org-test-with-temp-text + "#+MACRO: title (eval (eval-and-compile (error \"CVE-2024-30202\")))" + (progn + (org-mode) + t))) + (ert-deftest test-org/macro-replace-all () "Test `org-macro-replace-all' specifications." ;; Standard test.