CVE-2014-9637

NONE EPSS 81.0%
Published Aug 25, 20178y ago · Modified Jun 17, 20262w ago
Find Similar
Published Aug 25, 2017 8y ago
Last Modified Jun 17, 2026 2w ago

Description

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

Threat Intelligence

EPSS Exploit Probability
81.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-399

Affected Products 7

VendorProductVersionRange
fedoraprojectfedora20any
fedoraprojectfedora21any
mageiamageia4.0any
canonicalubuntu_linux12.04any
canonicalubuntu_linux14.04any
canonicalubuntu_linux14.10any
gnupatch* ≤2.7.2

References 9

  • advisories.mageia.org http://advisories.mageia.org/MGASA-2015-0068.html
    PatchThird Party Advisory
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154214.html
    PatchThird Party Advisory
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148953.html
    PatchThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2015/01/22/7
    Mailing ListPatchThird Party Advisory
  • securityfocus.com http://www.securityfocus.com/bid/72286
    Third Party AdvisoryVDB Entry
  • ubuntu.com http://www.ubuntu.com/usn/USN-2651-1
    PatchThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1185262
    Issue TrackingPatchThird Party Advisory
  • git.savannah.gnu.org https://git.savannah.gnu.org/cgit/patch.git/commit/?id=0c08d7a902c6fdd49b704623a12d8d672ef18944
    Issue TrackingPatchThird Party Advisory
  • savannah.gnu.org https://savannah.gnu.org/bugs/?44051
    Issue TrackingPatchThird Party Advisory

Remediation

  • advisories.mageia.org http://advisories.mageia.org/MGASA-2015-0068.html
    PatchThird Party Advisory
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154214.html
    PatchThird Party Advisory
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148953.html
    PatchThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2015/01/22/7
    Mailing ListPatchThird Party Advisory
  • ubuntu.com http://www.ubuntu.com/usn/USN-2651-1
    PatchThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1185262
    Issue TrackingPatchThird Party Advisory
  • git.savannah.gnu.org https://git.savannah.gnu.org/cgit/patch.git/commit/?id=0c08d7a902c6fdd49b704623a12d8d672ef18944
    Issue TrackingPatchThird Party Advisory
  • savannah.gnu.org https://savannah.gnu.org/bugs/?44051
    Issue TrackingPatchThird Party Advisory