Lucene search
MitreCVELIST:CVE-2018-20969HistoryAug 16, 2019 - 3:36 a.m.
CVE-2018-20969
2019-08-1603:36:12
mitre
www.cve.org
1
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
References
packetstormsecurity.com/files/154124/GNU-patch-Command-Injection-Directory-Traversal.html
access.redhat.com/errata/RHSA-2019:2798
access.redhat.com/errata/RHSA-2019:2964
access.redhat.com/errata/RHSA-2019:3757
access.redhat.com/errata/RHSA-2019:3758
access.redhat.com/errata/RHSA-2019:4061
git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0
github.com/irsl/gnu-patch-vulnerabilities
seclists.org/bugtraq/2019/Aug/29
Related
nessus
nessus
CentOS 8 : patch (CESA-2019:2798)
2021-01-29 00:00:00
Virtuozzo 7 : patch (VZLSA-2019-2964)
2020-12-10 00:00:00
RHEL 7 : patch (RHSA-2019:3758)
2019-11-08 00:00:00
osv
osv
CVE-2018-20969
2019-08-16 04:15:09
patch - security update
2019-07-25 00:00:00
patch - security update
2019-07-27 00:00:00
oraclelinux
oraclelinux
patch security update
2019-09-19 00:00:00
patch security update
2019-10-03 00:00:00
redhat
redhat
(RHSA-2019:2798) Important: patch security update
2019-09-17 08:44:08
(RHSA-2019:4061) Important: patch security update
2019-12-03 10:32:22
(RHSA-2019:3758) Important: patch security update
2019-11-06 16:11:01
openvas
openvas
CentOS Update for patch CESA-2019:2964 centos7
2019-10-24 00:00:00
Debian: Security Advisory (DLA-1864-1)
2019-07-26 00:00:00
Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2020-1065)
2020-01-23 00:00:00
ubuntucve
ubuntucve
CVE-2018-20969
2019-08-16 00:00:00
CVE-2019-13638
2019-07-22 00:00:00
cve
cve
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
alpinelinux
alpinelinux
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
prion
prion
Code injection
2019-08-16 04:15:00
Command injection
2019-07-26 13:15:00
nvd
nvd
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
centos
centos
patch security update
2019-10-23 13:03:59
debiancve
debiancve
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
photon
photon
Important Photon OS Security Update - PHSA-2019-0025
2019-08-20 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0025
2019-08-16 00:00:00
mageia
mageia
Updated patch packages fix security vulnerabilities
2020-02-22 02:06:01
debian
debian
[SECURITY] [DLA 1864-1] patch security update
2019-07-25 21:02:35
[SECURITY] [DSA 4489-1] patch security update
2019-07-27 17:46:40
[SECURITY] [DSA 4489-1] patch security update
2019-07-27 17:46:40
amazon
amazon
Important: patch
2019-10-21 18:01:00
Important: patch
2019-10-18 23:22:00
cbl_mariner
cbl_mariner
CVE-2019-13638 affecting package patch 2.7.6-7
2020-09-09 06:09:14
CVE-2019-13638 affecting package patch for versions less than 2.7.6-7
2022-04-09 06:51:43
CVE-2018-20969 affecting package patch for versions less than 2.7.6-7
2022-04-09 06:51:43
veracode
veracode
OS Command Injection
2019-10-04 00:30:53
Validation Bypass
2019-10-04 00:30:53
redhatcve
redhatcve
CVE-2019-13638
2019-10-06 04:31:11
CVE-2018-20969
2019-08-29 06:28:54
wolfi
wolfi
CVE-2019-13638 vulnerabilities
2024-07-05 21:08:40
CVE-2018-20969 vulnerabilities
2024-07-05 21:08:40
cgr
cgr
CVE-2019-13638 vulnerabilities
2024-05-19 03:07:16
CVE-2018-20969 vulnerabilities
2024-05-19 03:07:16
cloudfoundry
cloudfoundry
USN-4071-1: Patch vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
USN-4071-2: Patch vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: patch-2.7.6-11.fc30
2019-08-23 01:27:30
cvelist
cvelist
CVE-2019-13638
2019-07-26 12:22:43
gentoo
gentoo
Patch: Multiple vulnerabilities
2019-08-18 00:00:00
ubuntu
ubuntu
Patch vulnerabilities
2019-07-24 00:00:00
Patch vulnerabilities
2019-07-24 00:00:00