| Package | nano |
|---|---|
| Version | 2.2.6-3+deb8u1 (jessie), 2.7.4-1+deb9u1 (stretch) |
| Related CVEs | CVE-2024-5742 |
A symlink attack with emergency file saving has been fixed in the text editor nano.
For Debian 8 jessie, these problems have been fixed in version 2.2.6-3+deb8u1.
For Debian 9 stretch, these problems have been fixed in version 2.7.4-1+deb9u1.
We recommend that you upgrade your nano packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.