mirror of
git://slackware.nl/current.git
synced 2024-12-29 10:25:00 +01:00
1d9ca96a22
patches/packages/less-653-x86_64-1_slack15.0.txz: Upgraded.
This update patches a security issue:
less through 653 allows OS command execution via a newline character in the
name of a file, because quoting is mishandled in filename.c. Exploitation
typically requires use with attacker-controlled file names, such as the files
extracted from an untrusted archive. Exploitation also requires the LESSOPEN
environment variable, but this is set by default in many common cases.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32487
(* Security fix *)
19 lines
838 B
Text
19 lines
838 B
Text
# HOW TO EDIT THIS FILE:
|
|
# The "handy ruler" below makes it easier to edit a package description. Line
|
|
# up the first '|' above the ':' following the base package name, and the '|'
|
|
# on the right side marks the last column you can put a character in. You must
|
|
# make exactly 11 lines for the formatting to be correct. It's also
|
|
# customary to leave one space after the ':'.
|
|
|
|
|-----handy-ruler------------------------------------------------------|
|
|
less: less (file pager)
|
|
less:
|
|
less: Less is a paginator similar to more (1), but which allows backward
|
|
less: movement in the file as well as forward movement. Also, less does not
|
|
less: have to read the entire input file before starting, so with large
|
|
less: input files it starts up faster than text editors like vi (1).
|
|
less:
|
|
less: Less was written by Mark Nudelman.
|
|
less:
|
|
less:
|
|
less:
|