ELSA-2022-2120

ULN >
Oracle Linux Errata repository >
ELSA-2022-2120

ELSA-2022-2120 - zsh security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2022-05-17

Description

[5.5.1-9]
- do not perform PROMPT_SUBST evaluation on file.file/%K arguments (CVE-2021-45444)

[5.5.1-8]
- improve printing of error messages introduced by the fix of CVE-2019-20044

[5.5.1-7]
- drop privileges securely when unsetting PRIVILEGED option (CVE-2019-20044)

Related CVEs

CVE-2021-45444

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_aarch64_appstream
	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_aarch64_baseos_latest
	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_aarch64_u6_baseos_base
	zsh-5.5.1-9.el8.aarch64.rpm	dbb287ed851019e97f52147f1eb5664f19e3b8a347f62b256d736abb26c3380b	-	ol8_aarch64_baseos_latest
	zsh-5.5.1-9.el8.aarch64.rpm	dbb287ed851019e97f52147f1eb5664f19e3b8a347f62b256d736abb26c3380b	-	ol8_aarch64_u6_baseos_base
	zsh-html-5.5.1-9.el8.noarch.rpm	9fa7ae6659ebf48699c112179ce5676a61d35e3e86804b803d6b2fd0b3ba21b2	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_x86_64_appstream
	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_x86_64_baseos_latest
	zsh-5.5.1-9.el8.src.rpm	91040164d0da4e79e7c09d68d02f1939f3c0385b7513709b20b787b364337cb2	-	ol8_x86_64_u6_baseos_base
	zsh-5.5.1-9.el8.x86_64.rpm	c0659ffa0e7e9e3aa083b8d34245291cf8bcec6c03cfebcf4fafa7dedd5bc53c	-	ol8_x86_64_baseos_latest
	zsh-5.5.1-9.el8.x86_64.rpm	c0659ffa0e7e9e3aa083b8d34245291cf8bcec6c03cfebcf4fafa7dedd5bc53c	-	ol8_x86_64_u6_baseos_base
	zsh-html-5.5.1-9.el8.noarch.rpm	9fa7ae6659ebf48699c112179ce5676a61d35e3e86804b803d6b2fd0b3ba21b2	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691