CVE-2014-9637

Опубликовано: 25 авг. 2017

Источник: debian

Описание

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
patch	fixed	2.7.1-7		package
patch	not-affected		wheezy	package
patch	not-affected		squeeze	package

Примечания

https://savannah.gnu.org/bugs/?44051
http://git.savannah.gnu.org/cgit/patch.git/commit/?id=0c08d7a902c6fdd49b704623a12d8d672ef18944

Связанные уязвимости

CVE-2014-9637

CVSS3: 5.5

ubuntu

больше 8 лет назад

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

CVE-2014-9637

redhat

около 11 лет назад

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

CVE-2014-9637

CVSS3: 5.5

nvd

больше 8 лет назад

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

GHSA-wpf6-pr9h-p2gj

CVSS3: 5.5

github

больше 3 лет назад

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

BDU:2017-02048

fstec

около 11 лет назад

Уязвимость программной Unix-утилиты GNU Patch операционных систем Ubuntu, Fedora и Linux-дистрибутива Mageia, позволяющая нарушителю вызвать отказ в обслуживании при помощи специально созданного diff-файла