patch 2.7.5-1ubuntu0.16.04.2 source package in Ubuntu

Changelog

patch (2.7.5-1ubuntu0.16.04.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Directory traversal
    - debian/patches/CVE-2019-13636.patch: Don't follow symlinks unless
      --follow-symlinks is given in src/inp.c, src/util.c.
    - CVE-2019-13636
  * SECURITY UPDATE: Shell command injection
    - debian/patches/CVE-2019-13638.patch: Invoke ed directly instead of
      using the shell in src/pch.c.
    - CVE-2019-13638

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 23 Jul 2019 09:17:32 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa on 2019-07-23
Uploaded to:
Xenial
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
vcs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Xenial updates on 2019-07-24 main utils
Xenial security on 2019-07-24 main utils

Downloads

File Size SHA-256 Checksum
patch_2.7.5.orig.tar.xz 710.6 KiB fd95153655d6b95567e623843a0e77b81612d502ecf78a489a4aed7867caa299
patch_2.7.5-1ubuntu0.16.04.2.debian.tar.xz 12.3 KiB 4274779969c41d90db394717edde6e783e504c750e71ce61ec9077ad299e5bcf
patch_2.7.5-1ubuntu0.16.04.2.dsc 1.9 KiB f80df1b7bff022afff6309230c6fc50c4eb5d32666ff3632f4b5bfa5b74f8805

View changes file

Binary packages built by this source

patch: Apply a diff file to an original

 Patch will take a patch file containing any of the four forms
 of difference listing produced by the diff program and apply
 those differences to an original file, producing a patched
 version.

patch-dbgsym: debug symbols for package patch

 Patch will take a patch file containing any of the four forms
 of difference listing produced by the diff program and apply
 those differences to an original file, producing a patched
 version.