GLSA-201908-22 : Patch: Multiple vulnerabilities
High Nessus Plugin ID 127971
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201908-22 (Patch: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in Patch. Please review the CVE identifiers referenced below for details.
A local attacker could pass a specially crafted diff file to Patch, possibly resulting in a Denial of Service condition or arbitrary code execution.
There is no known workaround at this time.
SolutionAll Patch users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=sys-devel/patch-2.7.6-r4'