ID CVE-2018-1071
Summary zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service.
References
Vulnerable Configurations
  • cpe:2.3:a:zsh:zsh:3.1.5:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-10:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-10:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-11:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-11:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-12:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-12:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-13:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-13:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-14:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-14:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6109:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6109:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6117:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6117:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6119:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6119:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6133:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-16-w6133:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-21:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-21:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-22:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-22:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-23:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-23:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-24:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-24:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-6:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-6:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-7:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-7:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-8:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-8:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.5:pws-9:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.5:pws-9:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:bart-7:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:bart-7:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:bart-7-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:bart-7-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:bart-8:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:bart-8:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-14:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-14:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-15:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-15:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-16:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-16:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-17:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-17:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-18:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-18:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-19:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-19:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-20:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-20:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-21:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-21:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:dev-22:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:dev-22:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-10:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-10:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-11:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-11:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-12:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-12:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-13:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-13:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:pws-9:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:pws-9:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.6:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.6:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.7:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.7:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.7:pre-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.7:pre-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.7:pre-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.7:pre-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.7:pre-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.7:pre-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.7:prep-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.7:prep-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-6:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-6:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-7:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-7:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:3.1.9:dev-8:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:3.1.9:dev-8:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.1:pre-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.1:pre-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.1:pre-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.1:pre-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.1:pre-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.1:pre-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.1:pre-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.1:pre-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.2:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.2:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.2:pre-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.2:pre-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.0:dev-7:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.0:dev-7:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.1:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.1:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.1.1:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.1.1:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.0:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.0:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.0:pre-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.0:pre-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.0:pre-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.0:pre-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.0:pre-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.0:pre-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.0:pre-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.0:pre-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.1:test-a:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.1:test-a:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.6:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.6:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.2.6:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.2.6:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.0:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.0:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.0:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.0:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.0:dev-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.0:dev-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-6:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-6:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-7:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-7:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.4:dev-8:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.4:dev-8:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.5:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.5:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.5:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.5:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.5:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.5:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.5:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.5:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.5:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.5:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.6:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.6:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.6:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.6:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.6:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.6:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.7:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.7:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.8:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.8:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.9:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.9:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.9:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.9:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.9:dev-5:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.9:dev-5:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.10:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.10:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.10:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.10:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.10:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.10:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.11:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.11:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.11:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.11:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.12:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.12:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.12:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.12:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.13:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.13:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.14:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.14:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.15:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.15:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.16:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.16:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.17:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.17:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:4.3.17:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:4.3.17:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.0:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.0:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.2:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.2:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.2:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.2:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.2:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.2:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.2:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.2:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.3:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.3:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.3:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.3:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.3:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.3:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.5:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.5:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.5:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.5:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.5:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.5:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.5:dev-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.5:dev-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.6:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.6:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.6:dev-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.6:dev-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.7:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.7:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.7:dev-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.7:dev-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.7:dev-4:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.7:dev-4:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.8:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.8:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.8:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.8:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.0.8:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.0.8:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1.1:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1.1:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1.1:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1.1:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.1.1:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.1.1:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.2:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.2:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.2:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.2:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.2:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.2:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.2:test-3:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.2:test-3:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.3:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.3.1:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.3.1:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.3.1:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.3.1:test-2:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.4:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.4.2:-:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.4.2:-:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.4.2:test-1:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.4.2:test-1:*:*:*:*:*:*
  • cpe:2.3:a:zsh:zsh:5.4.2:test-2:*:*:*:*:*:*
    cpe:2.3:a:zsh:zsh:5.4.2:test-2:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 12-02-2023 - 23:32)
Impact:
Exploitability:
CWE CWE-121
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:P
redhat via4
advisories
rhsa
id RHSA-2018:3073
rpms
  • zsh-0:5.0.2-31.el7
  • zsh-debuginfo-0:5.0.2-31.el7
  • zsh-html-0:5.0.2-31.el7
refmap via4
bid 103359
confirm https://bugzilla.redhat.com/show_bug.cgi?id=1553531
gentoo GLSA-201805-10
mlist
  • [debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update
  • [debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update
ubuntu USN-3608-1
Last major update 12-02-2023 - 23:32
Published 09-03-2018 - 15:29
Last modified 12-02-2023 - 23:32
Back to Top