Описание
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| zsh | fixed | 5.0.7-3 | package |
Примечания
https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055
Debian needed to add cherry-pick-9982ab6f-missing-changelog-entry
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 7 лет назад
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
CVSS3: 2.8
redhat
около 11 лет назад
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
CVSS3: 9.8
nvd
больше 7 лет назад
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
CVSS3: 9.8
github
больше 3 лет назад
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
oracle-oval
около 7 лет назад
ELSA-2018-3073: zsh security and bug fix update (MODERATE)