A flaw was found in GNU patch before 2.7.6. An Out-of-bounds access within pch_write_line() function in pch.c file which can lead to a Denial of Service via a crafted input file.
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2019:2033 https://access.redhat.com/errata/RHSA-2019:2033
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):