1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2024-c0e7a4f5ef

[FEDORA-2024-c0e7a4f5ef] Fedora 40: less

Severity High
Affected Packages 1
CVEs 1
Info Packages References Vulnerabilities

Security fix for CVE-2024-32487 - less with LESSOPEN mishandles \n in paths

Package Affected Version
pkg:rpm/fedora/less?distro=fedora-40 < 643.6.fc40
ID
FEDORA-2024-c0e7a4f5ef
Severity
high
Severity from
CVE-2024-32487
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2024-c0e7a4f5ef
Published
2024-08-29T01:34:58
(2 weeks ago)
Modified
2024-08-29T01:34:58
(2 weeks ago)
Rights
Copyright 2024 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2274980 Bug #2274980 - CVE-2024-32487 less: OS command injection https://bugzilla.redhat.com/show_bug.cgi?id=2274980
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/less?distro=fedora-40 fedora less < 643.6.fc40 fedora-40
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date