Lucene search

K
mageiaGentoo FoundationMGASA-2018-0448
HistoryNov 16, 2018 - 1:04 a.m.

Updated patch packages fix security vulnerabilities

2018-11-1601:04:32
Gentoo Foundation
advisories.mageia.org
10

0.035 Low

EPSS

Percentile

91.5%

A NULL pointer dereference flaw was found in the way patch processed patch files. An attacker could potentially use this flaw to crash patch by tricking it into processing crafted patches (CVE-2018-6951). A double-free flaw was found in the way the patch utility processed patch files. An attacker could potentially use this flaw to crash the patch utility by tricking it into processing crafted patches (CVE-2018-6952).

OSVersionArchitecturePackageVersionFilename
Mageia6noarchpatch< 2.7.6-1.1patch-2.7.6-1.1.mga6