| Release | Version |
|---|---|
| buster | 487-0.1 |
| bullseye | 551-2 |
| bookworm | 590-2 |
| trixie | 590-2.1 |
| sid | 590-2.1 |
| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2024-32487 | vulnerable | vulnerable | vulnerable | fixed | fixed | less through 653 allows OS command execution via a newline character i ... |
| CVE-2022-48624 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | close_altfile in filename.c in less before 606 omits shell_quote calls ... |
| Bug | Description |
|---|---|
| CVE-2022-46663 | In GNU Less before 609, crafted data can result in "less -R" not filte ... |
| CVE-2014-9488 | The is_utf8_well_formed function in GNU less before 475 allows remote ... |
| CVE-2005-0086 | Heap-based buffer overflow in less in Red Hat Enterprise Linux 3 allow ... |
| CVE-2004-2264 | Format string bug in the open_altfile function in filename.c for GNU l ... |