{"url":"http://public2.vulnerablecode.io/api/packages/3095?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-1","type":"alpm","namespace":"archlinux","name":"patch","version":"2.7.6-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.7.6-7","latest_non_vulnerable_version":"2.7.6-7","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6210?format=json","vulnerability_id":"VCID-156f-gd52-m7c6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6952.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6952.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6952","reference_id":"","reference_type":"","scores":[{"value":"0.11805","scoring_system":"epss","scoring_elements":"0.93845","published_at":"2026-06-04T12:55:00Z"},{"value":"0.11805","scoring_system":"epss","scoring_elements":"0.93855","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6952"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6952","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6952"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545053","reference_id":"1545053","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545053"},{"reference_url":"https://security.archlinux.org/ASA-201810-8","reference_id":"ASA-201810-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201810-8"},{"reference_url":"https://security.archlinux.org/ASA-201811-14","reference_id":"ASA-201811-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-14"},{"reference_url":"https://security.archlinux.org/AVG-619","reference_id":"AVG-619","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-619"},{"reference_url":"https://security.archlinux.org/AVG-808","reference_id":"AVG-808","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-808"},{"reference_url":"https://security.gentoo.org/glsa/201904-17","reference_id":"GLSA-201904-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201904-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2033","reference_id":"RHSA-2019:2033","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2033"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2941?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156f-gd52-m7c6"},{"vulnerability":"VCID-fuan-yz1a-jbej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/2942?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-7"}],"aliases":["CVE-2018-6952"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-156f-gd52-m7c6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6332?format=json","vulnerability_id":"VCID-4kxj-ngfq-kqfx","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6951.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6951.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6951","reference_id":"","reference_type":"","scores":[{"value":"0.46115","scoring_system":"epss","scoring_elements":"0.97705","published_at":"2026-06-04T12:55:00Z"},{"value":"0.46115","scoring_system":"epss","scoring_elements":"0.97709","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6951"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6951","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6951"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545046","reference_id":"1545046","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545046"},{"reference_url":"https://security.archlinux.org/ASA-201810-8","reference_id":"ASA-201810-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201810-8"},{"reference_url":"https://security.archlinux.org/AVG-619","reference_id":"AVG-619","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-619"},{"reference_url":"https://security.gentoo.org/glsa/201904-17","reference_id":"GLSA-201904-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201904-17"},{"reference_url":"https://usn.ubuntu.com/3624-1/","reference_id":"USN-3624-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3624-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2941?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156f-gd52-m7c6"},{"vulnerability":"VCID-fuan-yz1a-jbej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-3"}],"aliases":["CVE-2018-6951"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4kxj-ngfq-kqfx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6211?format=json","vulnerability_id":"VCID-fuan-yz1a-jbej","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000156.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000156.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000156","reference_id":"","reference_type":"","scores":[{"value":"0.36762","scoring_system":"epss","scoring_elements":"0.97229","published_at":"2026-06-04T12:55:00Z"},{"value":"0.36762","scoring_system":"epss","scoring_elements":"0.97233","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000156"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000156","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000156"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1564326","reference_id":"1564326","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1564326"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894993","reference_id":"894993","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894993"},{"reference_url":"https://security.archlinux.org/ASA-201810-8","reference_id":"ASA-201810-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201810-8"},{"reference_url":"https://security.archlinux.org/ASA-201811-14","reference_id":"ASA-201811-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-14"},{"reference_url":"https://security.archlinux.org/AVG-619","reference_id":"AVG-619","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-619"},{"reference_url":"https://security.archlinux.org/AVG-808","reference_id":"AVG-808","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-808"},{"reference_url":"https://security.gentoo.org/glsa/201904-17","reference_id":"GLSA-201904-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201904-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1199","reference_id":"RHSA-2018:1199","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:1199"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1200","reference_id":"RHSA-2018:1200","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:1200"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2091","reference_id":"RHSA-2018:2091","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2091"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2092","reference_id":"RHSA-2018:2092","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2092"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2093","reference_id":"RHSA-2018:2093","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2093"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2094","reference_id":"RHSA-2018:2094","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2094"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2095","reference_id":"RHSA-2018:2095","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2095"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2096","reference_id":"RHSA-2018:2096","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2097","reference_id":"RHSA-2018:2097","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2097"},{"reference_url":"https://usn.ubuntu.com/3624-1/","reference_id":"USN-3624-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3624-1/"},{"reference_url":"https://usn.ubuntu.com/3624-2/","reference_id":"USN-3624-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3624-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2941?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156f-gd52-m7c6"},{"vulnerability":"VCID-fuan-yz1a-jbej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-3"},{"url":"http://public2.vulnerablecode.io/api/packages/2942?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-7"}],"aliases":["CVE-2018-1000156"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fuan-yz1a-jbej"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/97577?format=json","vulnerability_id":"VCID-t9q9-5hw4-73cs","summary":"An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10713.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10713.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10713","reference_id":"","reference_type":"","scores":[{"value":"0.00526","scoring_system":"epss","scoring_elements":"0.67377","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00526","scoring_system":"epss","scoring_elements":"0.67418","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10713"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10713","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10713"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545405","reference_id":"1545405","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545405"},{"reference_url":"https://security.archlinux.org/AVG-618","reference_id":"AVG-618","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-618"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2033","reference_id":"RHSA-2019:2033","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2033"},{"reference_url":"https://usn.ubuntu.com/3624-1/","reference_id":"USN-3624-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3624-1/"},{"reference_url":"https://usn.ubuntu.com/3624-2/","reference_id":"USN-3624-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3624-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/3095?format=json","purl":"pkg:alpm/archlinux/patch@2.7.6-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-156f-gd52-m7c6"},{"vulnerability":"VCID-4kxj-ngfq-kqfx"},{"vulnerability":"VCID-fuan-yz1a-jbej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-1"}],"aliases":["CVE-2016-10713"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t9q9-5hw4-73cs"}],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/patch@2.7.6-1"}