CVE-2018-1000156

2018-04-0613:29:00

Alpine Linux Development Team

security.alpinelinux.org

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITOR_PROGRAM invocation (using ed) can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD’s CVE-2015-1418 however although they share a common ancestry the code bases have diverged over time.

OSVersionArchitecturePackageVersionFilename
Alpineedge-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.10-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.11-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.12-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.13-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.14-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.15-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.16-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.17-mainnoarchpatch< 2.7.6-r6UNKNOWN
Alpine3.18-mainnoarchpatch< 2.7.6-r6UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	edge-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.10-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.11-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.12-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.13-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.14-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.15-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.16-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.17-main	noarch	patch	< 2.7.6-r6	UNKNOWN
Alpine	3.18-main	noarch	patch	< 2.7.6-r6	UNKNOWN