Описание
Security update for less
This update for less fixes the following issues:
- CVE-2022-48624: Fixed LESSCLOSE handling in less that does not quote shell metacharacters (bsc#1219901).
Список пакетов
Image SLES12-SP5-Azure-BYOS
less-458-7.12.1
Image SLES12-SP5-Azure-Basic-On-Demand
less-458-7.12.1
Image SLES12-SP5-Azure-HPC-BYOS
less-458-7.12.1
Image SLES12-SP5-Azure-HPC-On-Demand
less-458-7.12.1
Image SLES12-SP5-Azure-SAP-BYOS
less-458-7.12.1
Image SLES12-SP5-Azure-SAP-On-Demand
less-458-7.12.1
Image SLES12-SP5-Azure-Standard-On-Demand
less-458-7.12.1
Image SLES12-SP5-EC2-BYOS
less-458-7.12.1
Image SLES12-SP5-EC2-On-Demand
less-458-7.12.1
Image SLES12-SP5-EC2-SAP-BYOS
less-458-7.12.1
Image SLES12-SP5-EC2-SAP-On-Demand
less-458-7.12.1
Image SLES12-SP5-GCE-BYOS
less-458-7.12.1
Image SLES12-SP5-GCE-On-Demand
less-458-7.12.1
Image SLES12-SP5-GCE-SAP-BYOS
less-458-7.12.1
Image SLES12-SP5-GCE-SAP-On-Demand
less-458-7.12.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
less-458-7.12.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
less-458-7.12.1
SUSE Linux Enterprise Server 12 SP5
less-458-7.12.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
less-458-7.12.1
Ссылки
- Link for SUSE-SU-2024:1189-1
- E-Mail link for SUSE-SU-2024:1189-1
- SUSE Security Ratings
- SUSE Bug 1219901
- SUSE CVE CVE-2022-48624 page
Описание
close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:less-458-7.12.1
Image SLES12-SP5-Azure-Basic-On-Demand:less-458-7.12.1
Image SLES12-SP5-Azure-HPC-BYOS:less-458-7.12.1
Image SLES12-SP5-Azure-HPC-On-Demand:less-458-7.12.1
Ссылки
- CVE-2022-48624
- SUSE Bug 1219901
- SUSE Bug 1223303
- SUSE Bug 1224875