Download
| Alert*
|
CVE-2016-10713
An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file. CVE-2018-0492 Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation. CVE-2018-6952 A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6. CVE-2018-6951 An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue. |
