VDB

GCVE-110-MAGEIA-2015-68

GCVE-110-MAGEIA-2015-68
Advisory Published
Vulnetix · Advisory published February 17, 2015
Updated patch package fixes security vulnerabilities: It was reported that a crafted diff file can make patch eat memory and later segfault (CVE-2014-9637). It was reported that the versions of the patch utility that support Git-style patches are vulnerable to a directory traversal flaw. This could allow an attacker to overwrite arbitrary files by applying a specially crafted patch, with the privileges of the user running patch (CVE-2015-1395). GNU patch before 2.7.4 allows remote attackers to write to arbitrary files via a symlink attack in a patch file (CVE-2015-1196).

Affected Products

VendorProductVersionsPlatforms
Mageiagnome-shell0 (affected), 3.14.3-8.1.mga5 (unaffected)
Mageiapatch0 (affected), 2.7.4-1.mga4 (unaffected), 0 (affected), 2.7.4-1.mga4 (unaffected)

Browse GCVE Records

72,148 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›