CVE-2017-18205

Опубликовано: 27 фев. 2018

Источник: debian

EPSS Низкий

Описание

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
zsh	fixed	5.4.1-1		package

Примечания

https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58
no security impact

EPSS

Процентиль: 48%

0.00249

Низкий

Связанные уязвимости

CVE-2017-18205

CVSS3: 8.1

ubuntu

больше 7 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

CVE-2017-18205

CVSS3: 2

redhat

больше 8 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

CVE-2017-18205

CVSS3: 8.1

nvd

больше 7 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

GHSA-r2ph-r5g8-q5vv

CVSS3: 8.1

github

больше 3 лет назад

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

ELSA-2018-3073

oracle-oval

около 7 лет назад

ELSA-2018-3073: zsh security and bug fix update (MODERATE)

EPSS

Процентиль: 48%

0.00249

Низкий