CVE-2018-6952 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Denial of service
Description	A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6. An attacker could potentially use this flaw to crash the patch utility by tricking it into processing crafted patches.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-808	patch	2.7.6-3	2.7.6-7	High	Fixed	FS#57526
AVG-619	patch	2.7.6-1	2.7.6-3	High	Fixed	FS#57526

Date	Advisory	Group	Package	Severity	Type
12 Nov 2018	ASA-201811-14	AVG-808	patch	High	multiple issues
09 Oct 2018	ASA-201810-8	AVG-619	patch	High	multiple issues

References
https://savannah.gnu.org/bugs/?53133 https://git.savannah.gnu.org/cgit/patch.git/commit/?id=9c986353e420ead6e706262bf204d6e03322c300