ELSA-2019-2033

Опубликовано: 13 авг. 2019

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2019-2033: patch security and bug fix update (LOW)

[2.7.1-11]

Fixed CVE-2016-10713 - Out-of-bounds access in pch_write_line function
Fixed CVE-2018-6952 - Double free of memory
Resolves: #1626473, honor new file mode 100755 when applying patches
Resolves: #1653294, Added virtual provides for bundled gnulib library

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

patch

2.7.1-11.el7

Oracle Linux x86_64

patch

2.7.1-11.el7

Связанные CVE

CVE-2018-6952

CVE-2016-10713

Ссылки на источники

Связанные уязвимости

CVE-2016-10713

CVSS3: 5.5

ubuntu

больше 7 лет назад

An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.

CVE-2016-10713

CVSS3: 3.3

redhat

больше 7 лет назад

An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.

CVE-2016-10713

CVSS3: 5.5

nvd

больше 7 лет назад

An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.

CVE-2016-10713

CVSS3: 5.5

debian

больше 7 лет назад

An issue was discovered in GNU patch before 2.7.6. Out-of-bounds acces ...

CVE-2018-6952

CVSS3: 7.5

ubuntu

больше 7 лет назад

A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.