CESA-2019:2964 -- centos 7 patchID: oval:org.secpod.oval:def:205378 | Date: (C)2019-10-28 (M)2023-11-10 |
Class: PATCH | Family: unix |
The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file . Security Fix: * patch: do_ed_script in pch.c does not block strings beginning with a ! character * patch: OS shell command injection when processing crafted patch files For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.