[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48624/less

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1da3c125 by Salvatore Bonaccorso at 2024-02-19T09:29:42+01:00
Add CVE-2022-48624/less

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,7 +9,8 @@ CVE-2024-26318 (Serenity before 6.8.0 allows XSS via an email link because Login
 CVE-2024-24722 (An unquoted service path vulnerability in the 12d Synergy Server and F ...)
 	TODO: check
 CVE-2022-48624 (close_altfile in filename.c in less before 606 omits shell_quote calls ...)
-	TODO: check
+	- less <unfixed>
+	NOTE: https://github.com/gwsw/less/commit/c6ac6de49698be84d264a0c4c0c40bb870b10144 (v606)
 CVE-2020-36774 (plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x b ...)
 	TODO: check
 CVE-2024-25628 (Alf.io is a free and open source event attendance management system. I ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1da3c1256e1cca8969976eedb31ec83238ea1c99

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1da3c1256e1cca8969976eedb31ec83238ea1c99
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240219/c968b2b7/attachment.htm>