Patch Security Vulnerabilities and Issues — Patch CVE List

Lucene search

GnuPatch

4 matches found

CVE•added 2019/07/17 9:15 p.m.•542 views

CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.

5.9CVSS6.3AI score0.04739EPSS

CVE•added 2020/03/25 5:15 p.m.•414 views

CVE-2019-20633

GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function another_hunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952.

5.5CVSS6.2AI score0.12995EPSS

CVE•added 2018/02/13 7:29 p.m.•234 views

CVE-2016-10713

An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.

5.5CVSS5.9AI score0.00477EPSS

CVE•added 2021/12/22 6:15 p.m.•64 views

CVE-2021-45261

An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which causes a Denial of Service.

5.5CVSS5.3AI score0.00387EPSS