nano 7.2-2ubuntu0.1 source package in Ubuntu

Changelog

nano (7.2-2ubuntu0.1) noble-security; urgency=medium

  * SECURITY UPDATE: Emergency file could be replaced by a malicious symlink.
    - debian/patches/CVE-2024-5742.patch: Use fchmod and fchown in write_file()
      in src/files.c instead of using chmod and chown in emergency_save() in
      src/nano.c. Add EMERGENCY write type in kind_of_writing_type enum in
      src/definitions.h. Update fd in write_file() in src/files.c. Based on
      upstream.
    - CVE-2024-5742

 -- Hlib Korzhynskyy <email address hidden>  Thu, 10 Oct 2024 13:44:07 -0230

Upload details

Uploaded by:
Hlib Korzhynskyy
Uploaded to:
Noble
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
editors
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Noble updates main editors
Noble security main editors

Downloads

File Size SHA-256 Checksum
nano_7.2.orig.tar.xz 1.5 MiB 86f3442768bd2873cec693f83cdf80b4b444ad3cc14760b74361474fc87a4526
nano_7.2.orig.tar.xz.asc 833 bytes 5f91bf5bd4edfe2540cd1927e9f5eef46e655d4bfb2fdb22ceb0ffe67b4bedad
nano_7.2-2ubuntu0.1.debian.tar.xz 34.8 KiB df8f2a5401612b1e5605b862bd1ba1f27ec01714e45b3c078438090a9a6ed985
nano_7.2-2ubuntu0.1.dsc 2.3 KiB 3030f5b5c7874eeddc97bf8b6d9b44fbb01c8d8ff7326b1c153bf543a3d07c31

View changes file

Binary packages built by this source

nano: small, friendly text editor inspired by Pico

 GNU nano is an easy-to-use text editor originally designed as a replacement
 for Pico, the ncurses-based editor from the non-free mailer package Pine
 (itself now available under the Apache License as Alpine).
 .
 However, GNU nano also implements many features missing in Pico, including:
  - undo/redo
  - line numbering
  - syntax coloring
  - soft-wrapping of overlong lines
  - selecting text by holding Shift
  - interactive search and replace (with regular expression support)
  - a go-to line (and column) command
  - support for multiple file buffers
  - auto-indentation
  - tab completion of filenames and search terms
  - toggling features while running
  - and full internationalization support

nano-dbgsym: debug symbols for nano
nano-tiny: small, friendly text editor inspired by Pico - tiny build

 GNU nano is an easy-to-use text editor originally designed as a replacement
 for Pico, the ncurses-based editor from the non-free mailer package Pine
 (itself now available under the Apache License as Alpine).
 .
 This package contains a build of GNU nano with many features disabled, for
 environments such as rescue disks where resources are limited.

nano-tiny-dbgsym: debug symbols for nano-tiny