.avif)
View all vulnerabilities
CVE-2015-1395
Description
Directory traversal vulnerability in GNU patch versions which support Git-style patching before 2.7.3 allows remote attackers to write to arbitrary files with the permissions of the target user via a .. (dot dot) in a diff file name.
Patch Available
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgradingVulnerability Details
Score
Score Vector
Affected Versions
Severity
Ecosystem
RPM
Publish Date
August 25, 2017
Modified Date
August 9, 2025