Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-20633
HistoryMar 25, 2020 - 12:00 a.m.

CVE-2019-20633

2020-03-2500:00:00
ubuntu.com
ubuntu.com
14

0.001 Low

EPSS

Percentile

28.3%

GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free
vulnerability in the function another_hunk in pch.c that can cause a denial
of service via a crafted patch file. NOTE: this issue exists because of an
incomplete fix for CVE-2018-6952.

Notes

Author Note
sbeattie this issue was introduced by the fix for CVE-2018-6952, which has not been applied to any Ubuntu release, due to a complete fix not being available.