10 matches found
MiracleLinux 7 : zsh-5.0.2-33.el7 (AXSA:2019-3997:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3997:01 advisory. zsh: Improper handling of shebang line longer than 64 CVE-2018-13259 Tenable has extracted the preceding description block directly from the MiracleLinux...
SUSE-SU-2022:14910-1 Security update for zsh
This update for zsh fixes the following issues: - CVE-2019-20044: Fixed an insecure dropping of privileges when unsetting the PRIVILEGED option bsc1163882. - CVE-2018-13259: Fixed an unexpected truncation of long shebang lines bsc1107294. - CVE-2018-7549: Fixed a crash when an empty hash table...
The vulnerability of the Zsh shell script interpreter on UNIX systems arises from the lack of input validation mechanisms. This allows attackers to access sensitive data, compromise its integrity, and cause service failures.
The vulnerability of the Shebang handler in the UNIX command shell Zsh is related to the shortening of the Shebang line that exceeds 64 characters. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...
openSUSE: Security Advisory for openldap2 (openSUSE-SU-2019:2176-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for openldap2 (moderate)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2176-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.0 An update that solves three...
Security update for openldap2 (moderate)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2157-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.1 An update that solves three...
Fedora 28 : zsh (2018-16bb8b00c5)
fix two security issues in shebang line parsing CVE-2018-0502 CVE-2018-13259 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 29 : zsh (2018-5ad8e216d2)
fix two security issues in shebang line parsing CVE-2018-0502 CVE-2018-13259 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 27 : zsh (2018-8b1b2373b4)
fix two security issues in shebang line parsing CVE-2018-0502 CVE-2018-13259 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Design/Logic Flaw
An issue was discovered in zsh before 5.6. Shebang lines exceeding 64 characters were truncated, potentially leading to an execve call to a program name that is a substring of the intended one...