Lucene search
ZshZsh
5 matches found
CVE-2017-18206
In utils.c in zsh before 5.4, symlink expansion had a buffer overflow.
9.8CVSS7.2AI score0.00415EPSS
CVE-2014-10071
In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.
9.8CVSS7.4AI score0.00275EPSS
CVE-2018-7549
In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p.
7.5CVSS7.1AI score0.00276EPSS
CVE-2016-10714
In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.
9.8CVSS7AI score0.00226EPSS
CVE-2018-7548
In subst.c in zsh through 5.4.2, there is a NULL pointer dereference when using ${(PA)...} on an empty array result.
9.8CVSS8.4AI score0.00222EPSS