CVE-2018-20969

CWE-78 — OS Command Injection9 documents8 sources

Severity

7.8HIGH

EPSS

0.4%

top 42.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Patch

Timeline

PublishedAug 16

Latest updateMay 24

Description

do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

▶Debianpatch< 2.7.6-5+3

▶NVDgnu/patch2.7.6

Patches

Patch: git.savannah.gnu.org ↗Patch: seclists.org ↗Patch: git.savannah.gnu.org ↗

🔴Vulnerability Details

GHSA

GHSA-g5pm-269j-95rr: do_ed_script in pch↗2022-05-24

▶

OSV

CVE-2018-20969: do_ed_script in pch↗2019-08-16

▶

CVEList

CVE-2018-20969: do_ed_script in pch↗2019-08-16

▶

📋Vendor Advisories

Red Hat

patch: do_ed_script in pch.c does not block strings beginning with a ! character↗2019-08-16

▶

Microsoft

do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638 but the ! syntax is specific to ed and is unre↗2019-08-13

▶

Debian

CVE-2018-20969: patch - do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginnin...↗2018

▶

💬Community

Bugzilla

CVE-2018-20969 patch: do_ed_script in pch.c does not block strings beginning with a ! character [fedora-all]↗2019-08-29

▶

Bugzilla

CVE-2018-20969 patch: do_ed_script in pch.c does not block strings beginning with a ! character↗2019-08-29

▶