CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

GNU patch through 2.7.6 contains a freeplinepend Double Free vulnerability in the function anotherhunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952...

4.3CVSS6AI score0.08411EPSS

Exploits1References1Affected Software1

OSV•added 2019/07/17 9:15 p.m.•2 views

ALPINE-CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9CVSS6.9AI score0.03927EPSS

Exploits0References1

BDU FSTEC•added 2017/09/13 12:0 a.m.•3 views

The vulnerability of the GNU Patch software tool for Unix-based operating systems, such as Ubuntu, Fedora, and the Linux distribution Mageia, allows a hacker to cause a service failure by using a specially created diff file.

The vulnerability of the GNU Patch software tool for Unix-based operating systems, such as Ubuntu, Fedora, and the Linux distribution Mageia, is related to resource management errors memory consumption. Exploiting this vulnerability allows a malicious actor to cause service failures memory...

7.1CVSS6.5AI score0.0228EPSS

Exploits0References11Affected Software4

OSV•added 2017/08/25 6:29 p.m.•8 views

CVE-2015-1395

Directory traversal vulnerability in GNU patch versions which support Git-style patching before 2.7.3 allows remote attackers to write to arbitrary files with the permissions of the target user via a .. dot dot in a diff file name...

7.5CVSS7.4AI score

Exploits0References20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by