CVE-2022-46663

Опубликовано: 07 фев. 2023

Источник: debian

EPSS Низкий

Описание

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

Пакет	Статус	Версия исправления	Релиз	Тип
less	fixed	590-1.2		package
less	not-affected		bullseye	package
less	not-affected		buster	package

https://www.openwall.com/lists/oss-security/2023/02/07/7
Introduced by: https://github.com/gwsw/less/commit/0f810ef16781bf0f59690be63af876bddabf68bf (v566)
Fixed by: https://github.com/gwsw/less/commit/a78e1351113cef564d790a730d657a321624d79c

EPSS

Процентиль: 27%

0.00095

Низкий

CVE-2022-46663

CVSS3: 7.5

ubuntu

почти 3 года назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

redhat

почти 3 года назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

nvd

почти 3 года назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

msrc

почти 3 года назад

In GNU Less before 609 crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

SUSE-SU-2023:0348-1

suse-cvrf

почти 3 года назад

Security update for less

EPSS

Процентиль: 27%

0.00095

Низкий