1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-6664-1

[USN-6664-1] less vulnerability

Affected Packages 5
CVEs 1
Info Packages Vulnerabilities

less could be made to crash or run arbitrary commands if it receive a crafted input.

It was discovered that less incorrectly handled certain file names.
An attacker could possibly use this issue to cause a crash or execute
arbitrary commands.

Package Affected Version
pkg:deb/ubuntu/less?distro=xenial < 481-2.1ubuntu0.2+esm1
pkg:deb/ubuntu/less?distro=mantic < 590-2ubuntu0.23.10.1
pkg:deb/ubuntu/less?distro=jammy < 590-1ubuntu0.22.04.2
pkg:deb/ubuntu/less?distro=focal < 551-1ubuntu0.2
pkg:deb/ubuntu/less?distro=bionic < 487-0.1ubuntu0.1~esm1
ID
USN-6664-1
URL
https://ubuntu.com/security/notices/USN-6664-1
Published
2024-02-27T16:47:13
(6 months ago)
Modified
2024-02-27T16:47:13
(6 months ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/less?distro=xenial ubuntu less < 481-2.1ubuntu0.2+esm1 xenial
Affected pkg:deb/ubuntu/less?distro=mantic ubuntu less < 590-2ubuntu0.23.10.1 mantic
Affected pkg:deb/ubuntu/less?distro=jammy ubuntu less < 590-1ubuntu0.22.04.2 jammy
Affected pkg:deb/ubuntu/less?distro=focal ubuntu less < 551-1ubuntu0.2 focal
Affected pkg:deb/ubuntu/less?distro=bionic ubuntu less < 487-0.1ubuntu0.1~esm1 bionic
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date