admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2019/13xxx/CVE-2019-13638.json

132 lines
4.9 KiB
JSON
Raw Normal View History

"-Synchronized-Data."
2019-07-26 13:00:49 +00:00
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-13638",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2019-13638",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2019-13638"
},
{
"refsource": "MISC",
"name": "https://git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0",
"url": "https://git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0"
"-Synchronized-Data."
2019-07-27 23:00:48 +00:00
},
{
"refsource": "DEBIAN",
"name": "DSA-4489",
"url": "https://www.debian.org/security/2019/dsa-4489"
"-Synchronized-Data."
2019-07-30 10:00:56 +00:00
},
{
"refsource": "BUGTRAQ",
"name": "20190730 [SECURITY] [DSA 4489-1] patch security update",
"url": "https://seclists.org/bugtraq/2019/Jul/54"
"-Synchronized-Data."
2019-08-16 12:00:58 +00:00
},
{
"refsource": "BUGTRAQ",
"name": "20190816 Details about recent GNU patch vulnerabilities",
"url": "https://seclists.org/bugtraq/2019/Aug/29"
"-Synchronized-Data."
2019-08-16 18:00:48 +00:00
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/154124/GNU-patch-Command-Injection-Directory-Traversal.html",
"url": "http://packetstormsecurity.com/files/154124/GNU-patch-Command-Injection-Directory-Traversal.html"
"-Synchronized-Data."
2019-08-18 05:00:47 +00:00
},
{
"refsource": "GENTOO",
"name": "GLSA-201908-22",
"url": "https://security.gentoo.org/glsa/201908-22"
"-Synchronized-Data."
2019-08-23 03:01:02 +00:00
},
{
"refsource": "FEDORA",
"name": "FEDORA-2019-ac709da87f",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVWWGISFWACROJJPVJJL4UBLVZ7LPOLT/"
"-Synchronized-Data."
2019-08-28 13:00:51 +00:00
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190828-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190828-0001/"
"-Synchronized-Data."
2019-09-05 16:00:59 +00:00
},
{
"refsource": "MISC",
"name": "https://github.com/irsl/gnu-patch-vulnerabilities",
"url": "https://github.com/irsl/gnu-patch-vulnerabilities"
"-Synchronized-Data."
2019-09-19 07:00:51 +00:00
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2798",
"url": "https://access.redhat.com/errata/RHSA-2019:2798"
"-Synchronized-Data."
2019-10-03 18:00:56 +00:00
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2964",
"url": "https://access.redhat.com/errata/RHSA-2019:2964"
"-Synchronized-Data."
2019-11-06 21:01:21 +00:00
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:3757",
"url": "https://access.redhat.com/errata/RHSA-2019:3757"
"-Synchronized-Data."
2019-12-03 14:01:02 +00:00
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:3758",
"url": "https://access.redhat.com/errata/RHSA-2019:3758"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:4061",
"url": "https://access.redhat.com/errata/RHSA-2019:4061"
"-Synchronized-Data."
2019-07-26 13:00:49 +00:00
}
]
}
}
Reference in New Issue Copy Permalink