RLSA-2024:3513

See a problem?

Import Source

https://storage.googleapis.com/resf-osv-data/RLSA-2024:3513.json

JSON Data

https://api.osv.dev/v1/vulns/RLSA-2024:3513

Related

CVE-2024-32487

Published

2024-06-14T14:00:33.093068Z

Modified

2024-06-14T14:02:43.001120Z

Summary

Important: less security update

Details

The "less" utility is a text file browser that resembles "more", but allows users to move backwards in the file as well as forwards. Since "less" does not read the entire input file at startup, it also starts more quickly than ordinary text editors.

Security Fix(es):

less: OS command injection (CVE-2024-32487)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Credits

- Rocky Enterprise Software Foundation
- Red Hat

Affected packages

Rocky Linux:9 / less

Package

Name: less
Purl: pkg:rpm/rocky-linux/less?distro=rocky-linux-9&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:590-4.el9_4