1. CVE-Search
  2. CVE-2014-9637
ID CVE-2014-9637
Summary GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.
References
Vulnerable Configurations
  • cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
  • cpe:2.3:o:mageia:mageia:4.0:*:*:*:*:*:*:*
    cpe:2.3:o:mageia:mageia:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.5.9:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.5.9:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.6:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.7:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:patch:2.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:patch:2.7.2:*:*:*:*:*:*:*
CVSS
Base: 7.1 (as of 30-08-2017 - 01:16)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:C
refmap via4
bid 72286
confirm
fedora
  • FEDORA-2015-1134
  • FEDORA-2015-1165
mlist [oss-security] 20150122 Re: CVE request: directory traversal flaw in patch
ubuntu USN-2651-1
Last major update 30-08-2017 - 01:16
Published 25-08-2017 - 18:29
Last modified 30-08-2017 - 01:16
Back to Top