StarlingX

[Debian] High CVE: CVE-2022-48624/CVE-2024-32487 less : multiple CVEs

Bug #2064863 reported by Yue Tao on 2024-05-05

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	StarlingX	Fix Released	High	Wentao Zhang

Bug Description

CVE-2022-48624: https://nvd.nist.gov/vuln/detail/CVE-2022-48624

close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE.

CVE-2024-32487: https://nvd.nist.gov/vuln/detail/CVE-2024-32487

less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

Base Score: High

Reference:

['less_551-2_amd64.deb===>less_551-2+deb11u2_amd64.deb']
https://security-tracker.debian.org/tracker/DSA-5679-1

Tags:

CVE References

Wentao Zhang (wzhang4) on 2024-05-07

Changed in starlingx:
assignee:	nobody → Wentao Zhang (wzhang4)
assignee:	Wentao Zhang (wzhang4) → nobody
assignee:	nobody → Wentao Zhang (wzhang4)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2024-05-10: Fix proposed to tools (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/starlingx/tools/+/918958

Changed in starlingx:
status:	Triaged → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2024-05-10: Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/918958
Committed: https://opendev.org/starlingx/tools/commit/8b7b4e4cd8a73dc27d48a33b7bddde13a22cec7d
Submitter: "Zuul (22348)"
Branch: master

commit 8b7b4e4cd8a73dc27d48a33b7bddde13a22cec7d
Author: STX Builder <email address hidden>
Date: Tue May 7 05:43:46 2024 +0000

Debian: less : fix CVE-2022-48624/CVE-2024-32487

Upgrade less to 551-2+deb11u2

    Refer to:
    https://security-tracker.debian.org/tracker/DSA-5679-1
    https://nvd.nist.gov/vuln/detail/CVE-2022-48624
    https://nvd.nist.gov/vuln/detail/CVE-2024-32487

    Test Plan:
    Pass: downloader
    Pass: build-pkgs --clean --all
    Pass: build-image
    Pass: boot

Closes-bug: #2064863

Change-Id: Ie5da9ebad90ffc218d59083276b9f25d1bad8e6c
Signed-off-by: Wentao Zhang <email address hidden>

Changed in starlingx:
status:	In Progress → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.