CVE-2018-6952

SOURCE - nist

Summary

A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.

EPSS Score⁠: 0.03458 (0.915)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-415⁠

Double Free

SOURCE - redhat

CWE-416⁠

Use After Free

Sources (12)

Impacted images

debian

CREATED

6 years ago

UPDATED

8 months ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
debian/patch	deb	debian	12	>=2.7.6-7	Not yet available
debian/patch	deb	debian	13	>=2.7.6-7	Not yet available
debian/patch	deb	debian	10	>=2.7.6-3+deb10u1	Not yet available
debian/patch	deb	debian	unstable	>=2.7.6-7	Not yet available
debian/patch	deb	debian	11	>=2.7.6-7	Not yet available

Severity and metrics

No CVSS data available from this source.

nist

CREATED

6 years ago

UPDATED

5 years ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-415⁠

CVSS SCORE

7.5high

alpine

CREATED

6 years ago

UPDATED

2 months ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

ubuntu

CREATED

6 years ago

UPDATED

21 days ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5low

amazon

CREATED

5 years ago

UPDATED

5 years ago

SOURCE IDALAS-2019-1312⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

5 years ago

UPDATED

5 years ago

SOURCE IDALAS-2019-1317⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

5 years ago

UPDATED

5 years ago

SOURCE IDALAS2-2019-1317⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

redhat

CREATED

6 years ago

UPDATED

10 months ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-416⁠

CVSS SCORE

3.3low

suse

CREATED

6 years ago

UPDATED

8 months ago

SOURCE IDCVE-2018-6952⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

3.3low

oracle

CREATED

5 years ago

UPDATED

5 years ago

SOURCE IDELSA-2019-2033⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

chainguard

CREATED

6 years ago

UPDATED

8 months ago

SOURCE ID

CVE-2018-6952

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

wolfi

CREATED

6 years ago

UPDATED

8 months ago

SOURCE ID

CVE-2018-6952

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE