Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-45444HistoryFeb 14, 2022 - 12:15 p.m.
CVE-2021-45444
2022-02-1412:15:00
Alpine Linux Development Team
security.alpinelinux.org
16
0.001 Low
EPSS
Percentile
38.1%
In zsh before 5.8.1, an attacker can achieve code execution if they control a command output inside the prompt, as demonstrated by a %F argument. This occurs because of recursive PROMPT_SUBST expansion.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.12-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.13-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.16-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | zsh | <Â 5.8.1-r0 | UNKNOWN |
Related
nessus
nessus
Rocky Linux 8 : zsh (RLSA-2022:2120)
2023-11-06 00:00:00
Amazon Linux 2022 : (ALAS2022-2022-117)
2022-09-06 00:00:00
Debian DSA-5078-1 : zsh - security update
2022-02-16 00:00:00
freebsd
freebsd
zsh -- Arbitrary command execution vulnerability
2022-02-12 00:00:00
redhat
redhat
(RHSA-2022:2120) Moderate: zsh security update
2022-05-10 06:56:22
osv
osv
Moderate: zsh security update
2022-05-10 06:56:22
zsh - security update
2022-02-16 00:00:00
Moderate: zsh security update
2022-05-10 06:56:22
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0073)
2022-02-18 00:00:00
Debian: Security Advisory (DLA-2926-1)
2022-02-19 00:00:00
Fedora: Security Advisory for zsh (FEDORA-2022-0a06987c3c)
2022-02-23 00:00:00
mageia
mageia
Updated zsh packages fix security vulnerability
2022-02-18 03:14:24
debiancve
debiancve
CVE-2021-45444
2022-02-14 12:15:00
redhatcve
redhatcve
CVE-2021-45444
2022-02-14 09:55:02
amazon
amazon
Medium: zsh
2022-03-01 17:43:00
ubuntucve
ubuntucve
CVE-2021-45444
2022-02-14 00:00:00
debian
debian
[SECURITY] [DLA 2926-1] zsh security update
2022-02-18 08:35:06
[SECURITY] [DSA 5078-1] zsh security update
2022-02-16 13:24:26
cvelist
cvelist
CVE-2021-45444
2022-02-13 05:32:21
cve
cve
CVE-2021-45444
2022-02-14 12:15:00
rocky
rocky
zsh security update
2022-05-10 06:56:22
oraclelinux
oraclelinux
zsh security update
2022-05-17 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: zsh-5.8.1-1.fc35
2022-02-16 01:28:55
[SECURITY] Fedora 34 Update: zsh-5.8.1-1.fc34
2022-02-22 02:59:11
redos
redos
ROS-20220225-03
2022-02-25 00:00:00
prion
prion
Design/Logic Flaw
2022-02-14 12:15:00
veracode
veracode
Remote Code Execution (RCE)
2022-02-13 19:48:51
almalinux
almalinux
Moderate: zsh security update
2022-05-10 06:56:22
cbl_mariner
cbl_mariner
CVE-2021-45444 affecting package zsh for versions less than 5.9-1
2022-06-03 17:54:05
CVE-2021-45444 affecting package zsh 5.8-4
2022-03-09 18:31:41
suse
suse
Security update for zsh (important)
2022-03-04 00:00:00
ubuntu
ubuntu
Zsh vulnerabilities
2022-03-14 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0169
2022-04-03 00:00:00
Important Photon OS Security Update - PHSA-2022-0458
2022-03-30 00:00:00
Important Photon OS Security Update - PHSA-2022-0376
2022-04-01 00:00:00
apple
apple
About the security content of Security Update 2022-004 Catalina
2022-05-16 00:00:00
About the security content of macOS Big Sur 11.6.6
2022-05-16 00:00:00
About the security content of macOS Monterey 12.4
2022-05-16 00:00:00