CVE-2014-9637
Published: 31 December 2014
GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.
Priority
Medium
CVSS 3 base score: 5.5
Status
| Package | Release | Status |
|---|---|---|
|
patch Launchpad, Ubuntu, Debian |
precise |
Released
(2.6.1-3ubuntu0.1)
|
| trusty |
Released
(2.7.1-4ubuntu2.3)
|
|
| upstream |
Released
(2.7.1-7)
|
|
| utopic |
Released
(2.7.1-5ubuntu0.3)
|
|
| vivid |
Released
(2.7.3-1)
|
|
|
Patches: upstream: http://git.savannah.gnu.org/cgit/patch.git/commit/?id=0c08d7a902c6fdd49b704623a12d8d672ef18944 |
||