Lucene search

K
amazonAmazonALAS-2024-1924
HistoryFeb 28, 2024 - 11:54 p.m.

Important: less

2024-02-2823:54:00
alas.aws.amazon.com
6
less
close_altfile
filename.c
shell_quote
lessclose
cve-2022-48624
yum
update
red hat
mitre
unix

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%

Issue Overview:

close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE. (CVE-2022-48624)

Affected Packages:

less

Issue Correction:
Run yum update less to update your system.

New Packages:

i686:  
    less-436-13.13.amzn1.i686  
    less-debuginfo-436-13.13.amzn1.i686  
  
src:  
    less-436-13.13.amzn1.src  
  
x86_64:  
    less-debuginfo-436-13.13.amzn1.x86_64  
    less-436-13.13.amzn1.x86_64  

Additional References

Red Hat: CVE-2022-48624

Mitre: CVE-2022-48624