patch-2.7.6-11.el8
エラータID: AXSA:2020-262:01
The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file (patching the file).
Security Fix(es):
* patch: the following of symlinks in inp.c and util.c is mishandled in cases other than input files (CVE-2019-13636)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Asianux Server 8.2 Release Notes linked from the References section.
CVE-2019-13636
In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.
Update packages.
In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.
N/A
SRPMS
- patch-2.7.6-11.el8.src.rpm
MD5: a4ec425e4f38c15e1daabac9ba077453
SHA-256: 125733a3a05ccd25830d61f3f67396f320e6be6a5dda06d80351eb3ef6710190
Size: 798.16 kB
Asianux Server 8 for x86_64
- patch-2.7.6-11.el8.x86_64.rpm
MD5: 66edf15fe4ca4412d28930daf3ab0615
SHA-256: fec122132d9f4795b32980a5af387fba793d77de469f086e582fe8a4d0451425
Size: 137.62 kB