Описание
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.7.6-2ubuntu1.1 |
| devel | released | 2.7.6-5 |
| disco | released | 2.7.6-3ubuntu0.1 |
| esm-infra-legacy/trusty | not-affected | 2.7.1-4ubuntu2.4+esm1 |
| esm-infra/bionic | not-affected | 2.7.6-2ubuntu1.1 |
| esm-infra/xenial | not-affected | 2.7.5-1ubuntu0.16.04.2 |
| precise/esm | not-affected | |
| trusty | ignored | end of standard support |
| trusty/esm | released | 2.7.1-4ubuntu2.4+esm1 |
| upstream | released | 2.7.6-5 |
Показывать по
9.3 Critical
CVSS2
7.8 High
CVSS3
Связанные уязвимости
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
do_ed_script in pch.c in GNU patch through 2.7.6 does not block string ...
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
9.3 Critical
CVSS2
7.8 High
CVSS3