Package patch
Status Vulnerable
Severity High
Type multiple issues
Affected 2.7.6-1
Fixed Unknown
Current 2.7.6-1 [core]
Ticket FS#57526
Created Thu Feb 15 23:36:51 2018
Issue Severity Remote Type Description
CVE-2018-6952 Medium No Denial of service
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.
CVE-2018-6951 Low No Denial of service
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of...
CVE-2018-1000156 High No Arbitrary command execution
An arbitrary command execution vulnerability has been found in patch before 2.7.7 when applying ed-style patches. Due to insufficient sanitization of the...