Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-1533

Malware in sbrugna...

7.5CVSS7.4AI score0.03223EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-1196

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU patch 2.7.1 allows remote attackers to write to arbitrary files via a symlink attack in a patch file. CVE-2015-1196 Note that Nessus relies on the presence ...

4.3CVSS6.6AI score0.06096EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 7 : patch (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - patch: directory traversal via file rename CVE-2015-1395 - GNU patch 2.7.1 allows remote attackers to wri...

7.5CVSS6.6AI score0.11199EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2015:1019-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.11199EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2020/03/13 12:0 a.m.58 views

Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2020-1225)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.06096EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/03/13 12:0 a.m.39 views

EulerOS Virtualization for ARM 64 3.0.2.0 : patch (EulerOS-SA-2020-1225)

According to the versions of the patch package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pchwriteline in pch.c can possibly lead t...

9.3CVSS6.8AI score0.06096EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2019-2645)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.06096EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2019-2428)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.9AI score0.06096EPSS
Exploits1References2
OSV
OSV
added 2019/11/25 4:15 p.m.9 views

CVE-2015-1396

A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote attacker can write to arbitrary files via a symlink attack in a patch file. NOTE: this issue exists because of an incomplete fix for CVE-2015-1196...

7.5CVSS7.5AI score
Exploits0References4
Ubuntu
Ubuntu
added 2015/06/22 11:50 p.m.71 views

USN-2651-1: GNU patch vulnerabilities

Jakub Wilk discovered that GNU patch did not correctly handle file paths in patch files. An attacker could specially craft a patch file that could overwrite arbitrary files with the privileges of the user invoking the program. This issue only affected Ubuntu 12.04 LTS. CVE-2010-4651 László...

7.8CVSS6.7AI score0.11199EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/04/07 12:0 a.m.27 views

Fedora 20 : patch-2.7.5-1.fc20 (2015-1165)

Security fixes for CVE-2014-9637, CVE-2015-1196, and an infinite loop with a crafted diff. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

7.8CVSS6.4AI score0.11199EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2015/03/24 12:0 a.m.27 views

Fedora Update for patch FEDORA-2015-3556

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.06096EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/03/19 12:0 a.m.34 views

Mandriva Linux Security Advisory : patch (MDVSA-2015:050)

Updated patch package fixes security vulnerabilities : It was reported that a crafted diff file can make patch eat memory and later segfault CVE-2014-9637. It was reported that the versions of the patch utility that support Git-style patches are vulnerable to a directory traversal flaw. This coul...

7.8CVSS6.7AI score0.11199EPSS
Exploits1References4
securityvulns
securityvulns
added 2015/03/08 12:0 a.m.58 views

[ MDVSA-2015:050 ] patch

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:050 http://www.mandriva.com/en/support/security/ Package : patch Date : March 2, 2015 Affected: Business Server 1.0 Problem Description: Updated patch package fixes security vulnerabilities: It was reported...

7.8CVSS6.3AI score0.11199EPSS
Exploits1
Slackware Linux
Slackware Linux
added 2015/02/16 9:15 p.m.34 views

[slackware-security] patch

New patch packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/patch-2.7.4-i486-1slack14.1.txz: Upgraded. Patch no longer follows symbolic links to input and output files...

4.3CVSS6.5AI score0.06096EPSS
Exploits1
OpenVAS
OpenVAS
added 2015/02/06 12:0 a.m.26 views

Fedora Update for patch FEDORA-2015-1553

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.06096EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/02/04 12:0 a.m.26 views

openSUSE Security Update : patch (openSUSE-SU-2015:0199-1)

This update fixes the following security issue : + Security fix for a directory traversal flaw when handling git-style patches. This could allow an attacker to overwrite arbitrary files by applying a specially crafted patch. boo913678 CVE-2015-1196 This update fixes the following issues : + When ...

4.3CVSS6.6AI score0.06096EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/02/02 12:0 a.m.33 views

Fedora 21 : patch-2.7.3-1.fc21 (2015-1134)

Security fixes for CVE-2014-9637 and CVE-2015-1196. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.8CVSS6.4AI score0.11199EPSS
Exploits1References5
ArchLinux
ArchLinux
added 2015/01/28 12:0 a.m.51 views

patch: multiple issues

CVE-2015-1196 directory traversal A directory traversal flaw was discovered that allows remote attackers to write to arbitrary files via a symlink attack in a patch file. This could allow an attacker to overwrite arbitrary files by applying a specially crafted patch, with the privileges of the...

4.3CVSS5AI score0.06096EPSS
Exploits1References5
OSV
OSV
added 2015/01/28 12:0 a.m.6 views

UBUNTU-CVE-2015-1396

A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote attacker can write to arbitrary files via a symlink attack in a patch file. NOTE: this issue exists because of an incomplete fix for CVE-2015-1196...

7.5CVSS7.2AI score0.03223EPSS
Exploits0References3
Rows per page
Query Builder