Stay Connected:

ELSA-2018-3073

ELSA-2018-3073 - zsh security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2018-11-05

Description


[5.0.2-31]
- fix defects detected by Coverity related to CVE-2017-18206 and CVE-2018-1083

[5.0.2-30]
- fix stack-based buffer overflow in utils.c:checkmailpath() (CVE-2018-1100)
- fix stack-based buffer overflow in gen_matches_files() (CVE-2018-1083)
- fix stack-based buffer overflow in exec.c:hashcmd() (CVE-2018-1071)
- avoid crash when copying empty hash table (CVE-2018-7549)
- fix buffer overrun in xsymlinks (CVE-2017-18206)
- fix NULL dereference in cd (CVE-2017-18205)
- fix buffer overflow when scanning very long path for symlinks (CVE-2014-10072)
- fix buffer overflow for very long fds in >& fd syntax (CVE-2014-10071)

[5.0.2-29]
- fix crash while inputting long multi-line strings (#1492595)


Related CVEs


CVE-2017-18206
CVE-2018-1083
CVE-2018-1100
CVE-2014-10071
CVE-2017-18205
CVE-2018-1071
CVE-2018-7549
CVE-2014-10072

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) zsh-5.0.2-31.el7.src.rpm9d4af5a681e5a60d1d8465ab17be86527370372e4d18d09afa5d715455677318ELBA-2020-1206ol7_aarch64_latest
zsh-5.0.2-31.el7.src.rpm9d4af5a681e5a60d1d8465ab17be86527370372e4d18d09afa5d715455677318ELBA-2020-1206ol7_aarch64_optional_latest
zsh-5.0.2-31.el7.aarch64.rpm502b946f32f281b96b1171764fb4514d163cbc3d003566bfe769d3606658f2ceELBA-2020-1206ol7_aarch64_latest
zsh-html-5.0.2-31.el7.aarch64.rpm0e3e2c660056a7f96f9676a686a782c55fd3568f0adac12598047633c88aac76ELBA-2020-1206ol7_aarch64_optional_latest
Oracle Linux 7 (x86_64) zsh-5.0.2-31.el7.src.rpm9d4af5a681e5a60d1d8465ab17be86527370372e4d18d09afa5d715455677318ELBA-2020-1206ol7_x86_64_latest
zsh-5.0.2-31.el7.src.rpm9d4af5a681e5a60d1d8465ab17be86527370372e4d18d09afa5d715455677318ELBA-2020-1206ol7_x86_64_optional_latest
zsh-5.0.2-31.el7.src.rpm9d4af5a681e5a60d1d8465ab17be86527370372e4d18d09afa5d715455677318ELBA-2020-1206ol7_x86_64_u6_base
zsh-5.0.2-31.el7.x86_64.rpmc16602829c8d44bfd1e82c9d710b9ab3ce81513a814ea244d4859a27d44e17bcELBA-2020-1206ol7_x86_64_latest
zsh-5.0.2-31.el7.x86_64.rpmc16602829c8d44bfd1e82c9d710b9ab3ce81513a814ea244d4859a27d44e17bcELBA-2020-1206ol7_x86_64_u6_base
zsh-html-5.0.2-31.el7.x86_64.rpmc6b2495431c32de697b0391f06d6234bb88f4bab1a8867a5ae745f0449406e6aELBA-2020-1206ol7_x86_64_optional_developer
zsh-html-5.0.2-31.el7.x86_64.rpmc6b2495431c32de697b0391f06d6234bb88f4bab1a8867a5ae745f0449406e6aELBA-2020-1206ol7_x86_64_optional_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights