CPE-5532B55F-EF5C-4B0E-94E3-FF314B1E3FEA Détail

CPE Details

GNU Patch 2.5

Vendor

gnu

Product

patch

Version

2.5

Created

2019-08-05
11h58 +00:00

Modifié

2019-08-05
11h58 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:gnu:patch:2.5:::::::*

Informations

Vendor

gnu

Product

patch

Version

2.5

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2019-20633	2020-03-25 15h44 +00:00	GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function another_hunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952.	5.5	Moyen
CVE-2015-1396	2019-11-25 14h44 +00:00	A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote attacker can write to arbitrary files via a symlink attack in a patch file. NOTE: this issue exists because of an incomplete fix for CVE-2015-1196.	7.5	Haute
CVE-2018-20969	2019-08-16 01h36 +00:00	do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.	7.8	Haute
CVE-2019-13636	2019-07-17 18h04 +00:00	In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.	5.9	Moyen
CVE-2016-10713	2018-02-13 18h00 +00:00	An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.	5.5	Moyen
CVE-2018-6951	2018-02-13 18h00 +00:00	An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue.	7.5	Haute
CVE-2018-6952	2018-02-13 18h00 +00:00	A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.	7.5	Haute
CVE-2014-9637	2017-08-25 16h00 +00:00	GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.	5.5	Moyen
CVE-2015-1395	2017-08-25 16h00 +00:00	Directory traversal vulnerability in GNU patch versions which support Git-style patching before 2.7.3 allows remote attackers to write to arbitrary files with the permissions of the target user via a .. (dot dot) in a diff file name.	7.5	Haute

GNU Patch 2.5

CPE Details

CPE Name: cpe:2.3:a:gnu:patch:2.5:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:gnu:patch:2.5:::::::*