Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Debian 7 Wheezy: DLA-1348-1 Moderate: Input Validation Code Execution

debian lts
Calendar Grey April 16, 2018
Dist Debian Esm H88
A new patch addresses security issues in Debian's patch tool, reducing risks from input validation flaws that may allow unauthorized code execution. Update now.
It was discovered that there was an input validation vulnerability in the patch(1) utility where an ed(1) script embedded in a regular input file could result in arbitrary code exe...

Summary

We recommend that you upgrade your patch packages.

[0]


Regards,

- --
,'`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-



Package: patch
Version: 2.6.1-3+deb7u1
CVE ID: CVE-2018-1000156
Debian Bug: #894993

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.