CVE-2022-46663

Опубликовано: 07 фев. 2023

Источник: debian

Описание

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

Пакет	Статус	Версия исправления	Релиз	Тип
less	fixed	590-1.2		package
less	not-affected		bullseye	package
less	not-affected		buster	package

https://www.openwall.com/lists/oss-security/2023/02/07/7
Introduced by: https://github.com/gwsw/less/commit/0f810ef16781bf0f59690be63af876bddabf68bf (v566)
Fixed by: https://github.com/gwsw/less/commit/a78e1351113cef564d790a730d657a321624d79c

CVE-2022-46663

CVSS3: 7.5

ubuntu

больше 2 лет назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

redhat

больше 2 лет назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

nvd

больше 2 лет назад

In GNU Less before 609, crafted data can result in "less -R" not filtering ANSI escape sequences sent to the terminal.

CVE-2022-46663

CVSS3: 7.5

msrc

больше 2 лет назад

Описание отсутствует

SUSE-SU-2023:0348-1

suse-cvrf

больше 2 лет назад

Security update for less