PT-2019-5127 · Gnu+7 · Gnu Patch+7

Imre Rad

Published

2018-06-08

Updated

2026-04-01

CVE-2019-13636

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions GNU patch versions prior to 2.7.7

Description The issue is related to the mishandling of symlinks in certain cases, affecting inp.c and util.c. This can potentially allow a remote attacker to impact data integrity.

Recommendations For GNU patch versions prior to 2.7.7, update to version 2.7.7 or later to resolve the issue.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

ALSA-2020:1852

ALT-PU-2018-1872

AZL-35105

AZL-6789

BDU:2020-01794

CESA-2020_1852

CLEANSTART-2026-NA21773

CLEANSTART-2026-PM79547

CVE-2019-13636

DLA-1856-1

DSA-4489-1

MGASA-2020-0093

OPENSUSE-SU-2022_1925-1

OPENSUSE-SU-2024:12060-1

RHSA-2020:1852

RHSA-2020_1852

RLSA-2020:1852

SUSE-SU-2022:1925-1

SUSE-SU-2022:1932-1

USN-4071-1

USN-4071-2

Affected Products

Alt Linux

Almalinux

Centos

Gnu Patch

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2019-5127 · Gnu+7 · Gnu Patch+7

CVE-2019-13636

Weakness Enumeration

Related Identifiers

Affected Products

References · 74