Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-56288

GNU patch is vulnerable to a NULL pointer dereference when processing a specially crafted unified-diff patch file. Improper handling of consecutive end-of-file newline markers can corrupt internal hunk single block of changes in diff data structures, causing the application to pass a NULL pointer...

4.6CVSS5.9AI score0.00125EPSS
Exploits0References4
Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-56288 NULL Pointer Dereference in GNU patch

GNU patch is vulnerable to a NULL pointer dereference when processing a specially crafted unified-diff patch file. Improper handling of consecutive end-of-file newline markers can corrupt internal hunk single block of changes in diff data structures, causing the application to pass a NULL pointer...

4.6CVSS0.00125EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-48325

Name of the Vulnerable Software and Affected Versions Spring Data REST versions 3.7.0 through 3.7.19 Spring Data REST versions 4.3.0 through 4.3.16 Spring Data REST versions 4.4.0 through 4.4.14 Spring Data REST versions 4.5.0 through 4.5.11 Spring Data REST versions 5.0.0 through 5.0.5 Descripti...

8.1CVSS5.9AI score0.00393EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.3 views

SUSE CVE-2018-1000156

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

7.8CVSS8AI score0.0556EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2018/06/27 7:19 p.m.6 views

patch: Malicious patch files cause ed to execute arbitrary commands

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

7.8CVSS7.2AI score0.0556EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/06/27 7:2 p.m.6 views

patch: Malicious patch files cause ed to execute arbitrary commands

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

9.3CVSS7.2AI score0.0556EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/06/27 7:2 p.m.7 views

patch: Malicious patch files cause ed to execute arbitrary commands

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

9.3CVSS7.2AI score0.0556EPSS
Exploits0References4
OSV
OSV
added 2018/04/06 1:29 p.m.8 views

AZL-6785 CVE-2018-1000156 affecting package patch for versions less than 2.7.6-7

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

7.8CVSS7.2AI score0.0556EPSS
Exploits0References1
OSV
OSV
added 2018/04/06 1:29 p.m.4 views

ALPINE-CVE-2018-1000156

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

7.8CVSS7.5AI score0.0556EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/02/14 7:19 a.m.29 views

CVE-2018-6951

A NULL pointer dereference flaw was found in the way patch processed patch files. An attacker could potentially use this flaw to crash patch by tricking it into processing crafted patches...

7.5CVSS2.5AI score0.08585EPSS
Exploits0References1
Rows per page
Query Builder