[RLSA-2024:3513] less security update

Severity Important

Affected Packages 2

CVEs 1

An update is available for less. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The "less" utility is a text file browser that resembles "more", but allows users to move backwards in the file as well as forwards. Since "less" does not read the entire input file at startup, it also starts more quickly than ordinary text editors.

Security Fix(es):

less: OS command injection (CVE-2024-32487)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Package	Affected Version
pkg:rpm/rockylinux/less?arch=x86_64&distro=rockylinux-9.4	< 590-4.el9_4
pkg:rpm/rockylinux/less?arch=aarch64&distro=rockylinux-9.4	< 590-4.el9_4

ID

RLSA-2024:3513

Severity

important

URL

https://errata.rockylinux.org/RLSA-2024:3513

Published

2024-06-14T14:00:33
(3 months ago)

Modified

2024-06-14T14:02:43
(3 months ago)

Rights

Other Advisories

Source	# ID	URL
CVE	CVE-2024-32487	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32487
Bugzilla	2274980	https://bugzilla.redhat.com/show_bug.cgi?id=2274980
Self	RLSA-2024:3513	https://errata.rockylinux.org/RLSA-2024:3513

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/rockylinux/less?arch=x86_64&distro=rockylinux-9.4	rockylinux	less	< 590-4.el9_4	rockylinux-9.4	x86_64
Affected	pkg:rpm/rockylinux/less?arch=aarch64&distro=rockylinux-9.4	rockylinux	less	< 590-4.el9_4	rockylinux-9.4	aarch64

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date