Ubuntu Security Notice 4071-1 - It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information. It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
bb6be6ae6ab1c6d02ca25c70421ee7d9fb0267f22a1d62dae05ce539135a8dc1
==========================================================================
Ubuntu Security Notice USN-4071-1
July 24, 2019
patch vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 19.04
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
Several security issues were fixed in Patch.
Software Description:
- patch: Apply a diff file to an original
Details:
It was discovered that Patch incorrectly handled certain files.
An attacker could possibly use this issue to access sensitive information.
(CVE-2019-13636)
It was discovered that Patch incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2019-13638)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 19.04:
patch 2.7.6-3ubuntu0.1
Ubuntu 18.04 LTS:
patch 2.7.6-2ubuntu1.1
Ubuntu 16.04 LTS:
patch 2.7.5-1ubuntu0.16.04.2
In general, a standard system update will make all the necessary changes.
References:
https://usn.ubuntu.com/4071-1
CVE-2019-13636, CVE-2019-13638
Package Information:
https://launchpad.net/ubuntu/+source/patch/2.7.6-3ubuntu0.1
https://launchpad.net/ubuntu/+source/patch/2.7.6-2ubuntu1.1
https://launchpad.net/ubuntu/+source/patch/2.7.5-1ubuntu0.16.04.2