CVE-2019-13638

Name
CVE-2019-13638
Description
GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Mailing List https://git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2019-13638
Third Party Advisory https://www.debian.org/security/2019/dsa-4489
Mailing List https://seclists.org/bugtraq/2019/Jul/54
BUGTRAQ https://seclists.org/bugtraq/2019/Aug/29
MISC http://packetstormsecurity.com/files/154124/GNU-patch-Command-Injection-Directory-Traversal.html
GENTOO https://security.gentoo.org/glsa/201908-22
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVWWGISFWACROJJPVJJL4UBLVZ7LPOLT/
CONFIRM https://security.netapp.com/advisory/ntap-20190828-0001/
MISC https://github.com/irsl/gnu-patch-vulnerabilities
REDHAT https://access.redhat.com/errata/RHSA-2019:2798
REDHAT https://access.redhat.com/errata/RHSA-2019:2964
REDHAT https://access.redhat.com/errata/RHSA-2019:3757
REDHAT https://access.redhat.com/errata/RHSA-2019:4061
REDHAT https://access.redhat.com/errata/RHSA-2019:3758

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:gnu:patch:2.7.6:*:*:*:*:*:*:* patch == None == 2.7.6

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
patch 3.10-main 2.7.6-r6 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.14-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.13-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.12-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.11-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.15-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.16-main 2.7.6-r7 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.17-main 2.7.6-r9 Natanael Copa <ncopa@alpinelinux.org> fixed
patch edge-main 2.7.6-r10 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.18-main 2.7.6-r10 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.19-main 2.7.6-r10 Natanael Copa <ncopa@alpinelinux.org> fixed
patch 3.20-main 2.7.6-r10 Natanael Copa <ncopa@alpinelinux.org> fixed