Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2015-0068
HistoryFeb 17, 2015 - 9:38 p.m.

Updated patch packages fix security vulnerabilities

2015-02-1721:38:13
Gentoo Foundation
advisories.mageia.org
13

0.008 Low

EPSS

Percentile

82.0%

JSON

Updated patch package fixes security vulnerabilities: It was reported that a crafted diff file can make patch eat memory and later segfault (CVE-2014-9637). It was reported that the versions of the patch utility that support Git-style patches are vulnerable to a directory traversal flaw. This could allow an attacker to overwrite arbitrary files by applying a specially crafted patch, with the privileges of the user running patch (CVE-2015-1395). GNU patch before 2.7.4 allows remote attackers to write to arbitrary files via a symlink attack in a patch file (CVE-2015-1196).

OSVersionArchitecturePackageVersionFilename
Mageia4noarchpatch< 2.7.4-1patch-2.7.4-1.mga4

Related

openvas 18
nessus 18
fedora 4
securityvulns 3
archlinux 1
ubuntu 1
rosalinux 1
ubuntucve 4
prion 4
cve 4
cvelist 4
debiancve 4
slackware 1
suse 1
openvas
openvas
Fedora Update for patch FEDORA-2015-1134
2015-01-31 00:00:00
Fedora Update for patch FEDORA-2015-1165
2015-04-05 00:00:00
Mageia: Security Advisory (MGASA-2015-0068)
2022-01-28 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : patch (MDVSA-2015:138)
2015-03-30 00:00:00
Fedora 21 : patch-2.7.3-1.fc21 (2015-1134)
2015-02-02 00:00:00
Fedora 20 : patch-2.7.5-1.fc20 (2015-1165)
2015-04-07 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: patch-2.7.3-1.fc21
2015-01-30 23:54:24
[SECURITY] Fedora 20 Update: patch-2.7.5-1.fc20
2015-04-04 07:20:51
[SECURITY] Fedora 21 Update: patch-2.7.4-1.fc21
2015-02-05 05:23:20
securityvulns
securityvulns
[ MDVSA-2015:050 ] patch
2015-03-08 00:00:00
GNU patch security vulnerabilities
2015-06-29 00:00:00
[USN-2651-1] GNU patch vulnerabilities
2015-06-29 00:00:00
archlinux
archlinux
patch: multiple issues
2015-01-28 00:00:00
ubuntu
ubuntu
GNU patch vulnerabilities
2015-06-22 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1946
2021-07-02 17:39:56
ubuntucve
ubuntucve
CVE-2014-9637
2014-12-31 00:00:00
CVE-2015-1395
2015-01-28 00:00:00
CVE-2015-1196
2015-01-21 00:00:00
prion
prion
Directory traversal
2017-08-25 18:29:00
Design/Logic Flaw
2017-08-25 18:29:00
Design/Logic Flaw
2015-01-21 18:59:00
cve
cve
CVE-2014-9637
2017-08-25 18:29:00
CVE-2015-1395
2017-08-25 18:29:00
CVE-2015-1196
2015-01-21 18:59:00
cvelist
cvelist
CVE-2015-1395
2017-08-25 18:00:00
CVE-2014-9637
2017-08-25 18:00:00
CVE-2015-1196
2015-01-21 18:00:00
debiancve
debiancve
CVE-2014-9637
2017-08-25 18:29:00
CVE-2015-1395
2017-08-25 18:29:00
CVE-2015-1196
2015-01-21 18:59:00
slackware
slackware
[slackware-security] patch
2015-02-16 21:15:25
suse
suse
Security update for patch (important)
2018-05-07 21:07:23

0.008 Low

EPSS

Percentile

82.0%

JSON
Related for MGASA-2015-0068
openvas18nessus18fedora4securityvulns3archlinux1ubuntu1rosalinux1ubuntucve4prion4cve4cvelist4debiancve4slackware1suse1