/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2019-20633

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2019-20633

CGA ID

CGA-x3gf-54pw-xf6f

Severity

5.5

Medium

CVSS V3

Description

GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function another_hunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952.

References

  • https://images.chainguard.dev/security/CGA-x3gf-54pw-xf6f
  • https://github.com/advisories/GHSA-w88p-xvmw-fxgg
  • https://savannah.gnu.org/bugs/index.php?56683
  • https://security.alpinelinux.org/vuln/CVE-2019-20633

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation