==========================================================================
Ubuntu Security Notice USN-4071-2
July 24, 2019

patch vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 14.04 ESM

Summary:

Several security issues were fixed in Patch.

Software Description:
– patch: Apply a diff file to an original

Details:

USN-4071-1 fixed several vulnerabilities in Patch. This update provides
the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

It was discovered that Patch incorrectly handled certain files.
An attacker could possibly use this issue to access sensitive information.
(CVE-2019-13636)

It was discovered that Patch incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2019-13638)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
patch 2.7.1-4ubuntu2.4+esm1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4071-2
https://usn.ubuntu.com/4071-1
CVE-2019-13636, CVE-2019-13638
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=wxme
—–END PGP SIGNATURE—–
—