Medium
Canonical Ubuntu
USN-4071-1 fixed several vulnerabilities in Patch. This update provides the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information. (CVE-2019-13636)
It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-13638)
CVEs contained in this USN include: CVE-2019-13636, CVE-2019-13638
Severity is medium unless otherwise noted.
Users of affected products are strongly encouraged to follow one of the mitigations below: