Lucene search
RedHatRHSA-2019:2964HistoryOct 03, 2019 - 1:26 p.m.
(RHSA-2019:2964) Important: patch security update
2019-10-0313:26:20
access.redhat.com
67
0.008 Low
EPSS
Percentile
81.5%
The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file (patching the file).
Security Fix(es):
-
patch: do_ed_script in pch.c does not block strings beginning with a ! character (CVE-2018-20969)
-
patch: OS shell command injection when processing crafted patch files (CVE-2019-13638)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | ppc64 | patch-debuginfo | < 2.7.1-12.el7_7 | patch-debuginfo-2.7.1-12.el7_7.ppc64.rpm |
| RedHat | 7 | x86_64 | patch | < 2.7.1-12.el7_7 | patch-2.7.1-12.el7_7.x86_64.rpm |
| RedHat | 7 | s390x | patch | < 2.7.1-12.el7_7 | patch-2.7.1-12.el7_7.s390x.rpm |
| RedHat | 7 | x86_64 | patch-debuginfo | < 2.7.1-12.el7_7 | patch-debuginfo-2.7.1-12.el7_7.x86_64.rpm |
| RedHat | 7 | ppc64 | patch | < 2.7.1-12.el7_7 | patch-2.7.1-12.el7_7.ppc64.rpm |
| RedHat | 7 | ppc64le | patch | < 2.7.1-12.el7_7 | patch-2.7.1-12.el7_7.ppc64le.rpm |
| RedHat | 7 | ppc64le | patch-debuginfo | < 2.7.1-12.el7_7 | patch-debuginfo-2.7.1-12.el7_7.ppc64le.rpm |
| RedHat | 7 | s390x | patch-debuginfo | < 2.7.1-12.el7_7 | patch-debuginfo-2.7.1-12.el7_7.s390x.rpm |
Related
nessus
nessus
CentOS 8 : patch (CESA-2019:2798)
2021-01-29 00:00:00
Virtuozzo 7 : patch (VZLSA-2019-2964)
2020-12-10 00:00:00
RHEL 7 : patch (RHSA-2019:3757)
2019-11-08 00:00:00
osv
osv
CVE-2018-20969
2019-08-16 04:15:09
patch - security update
2019-07-25 00:00:00
patch - security update
2019-07-27 00:00:00
redhat
redhat
(RHSA-2019:2798) Important: patch security update
2019-09-17 08:44:08
(RHSA-2019:4061) Important: patch security update
2019-12-03 10:32:22
(RHSA-2019:3758) Important: patch security update
2019-11-06 16:11:01
oraclelinux
oraclelinux
patch security update
2019-09-19 00:00:00
patch security update
2019-10-03 00:00:00
openvas
openvas
CentOS Update for patch CESA-2019:2964 centos7
2019-10-24 00:00:00
Debian: Security Advisory (DLA-1864-1)
2019-07-26 00:00:00
Huawei EulerOS: Security Advisory for patch (EulerOS-SA-2020-1065)
2020-01-23 00:00:00
cvelist
cvelist
CVE-2018-20969
2019-08-16 03:36:12
CVE-2019-13638
2019-07-26 12:22:43
ubuntucve
ubuntucve
CVE-2018-20969
2019-08-16 00:00:00
CVE-2019-13638
2019-07-22 00:00:00
cve
cve
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
alpinelinux
alpinelinux
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
prion
prion
Code injection
2019-08-16 04:15:00
Command injection
2019-07-26 13:15:00
nvd
nvd
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
centos
centos
patch security update
2019-10-23 13:03:59
debiancve
debiancve
CVE-2018-20969
2019-08-16 04:15:09
CVE-2019-13638
2019-07-26 13:15:12
photon
photon
Important Photon OS Security Update - PHSA-2019-0025
2019-08-20 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0025
2019-08-16 00:00:00
mageia
mageia
Updated patch packages fix security vulnerabilities
2020-02-22 02:06:01
debian
debian
[SECURITY] [DLA 1864-1] patch security update
2019-07-25 21:02:35
[SECURITY] [DSA 4489-1] patch security update
2019-07-27 17:46:40
[SECURITY] [DSA 4489-1] patch security update
2019-07-27 17:46:40
amazon
amazon
Important: patch
2019-10-18 23:22:00
Important: patch
2019-10-21 18:01:00
redhatcve
redhatcve
CVE-2019-13638
2019-10-06 04:31:11
CVE-2018-20969
2019-08-29 06:28:54
cbl_mariner
cbl_mariner
CVE-2019-13638 affecting package patch 2.7.6-7
2020-09-09 06:09:14
CVE-2019-13638 affecting package patch for versions less than 2.7.6-7
2022-04-09 06:51:43
CVE-2019-13638 affecting package patch for versions less than 2.7.6-9
2024-03-19 17:21:46
veracode
veracode
OS Command Injection
2019-10-04 00:30:53
Validation Bypass
2019-10-04 00:30:53
wolfi
wolfi
CVE-2019-13638 vulnerabilities
2024-07-03 09:08:38
CVE-2018-20969 vulnerabilities
2024-07-03 09:08:38
cgr
cgr
CVE-2019-13638 vulnerabilities
2024-05-19 03:07:16
CVE-2018-20969 vulnerabilities
2024-05-19 03:07:16
cloudfoundry
cloudfoundry
USN-4071-1: Patch vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
USN-4071-2: Patch vulnerabilities | Cloud Foundry
2019-08-29 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: patch-2.7.6-11.fc30
2019-08-23 01:27:30
gentoo
gentoo
Patch: Multiple vulnerabilities
2019-08-18 00:00:00
ubuntu
ubuntu
Patch vulnerabilities
2019-07-24 00:00:00
Patch vulnerabilities
2019-07-24 00:00:00