Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-14868 (GCVE-0-2019-14868)
Vulnerability from cvelistv5 – Published: 2020-04-02 16:48 – Updated: 2024-08-05 00:26
VLAI?
EPSS
Summary
In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
Severity ?
7.4 (High)
CWE
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2… | x_refsource_CONFIRM |
| https://github.com/att/ast/commit/c7de8b641266bac… | x_refsource_MISC |
| https://support.apple.com/kb/HT211170 | x_refsource_CONFIRM |
| http://seclists.org/fulldisclosure/2020/May/53 | mailing-listx_refsource_FULLDISC |
| https://lists.debian.org/debian-lts-announce/2020… | mailing-listx_refsource_MLIST |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T00:26:39.141Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/kb/HT211170"
},
{
"name": "20200529 APPLE-SA-2020-05-26-3 macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"name": "[debian-lts-announce] 20200720 [SECURITY] [DLA 2284-1] ksh security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "ksh",
"vendor": "KornShell",
"versions": [
{
"status": "affected",
"version": "20120801"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-77",
"description": "CWE-77",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-07-20T23:06:17.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/kb/HT211170"
},
{
"name": "20200529 APPLE-SA-2020-05-26-3 macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"name": "[debian-lts-announce] 20200720 [SECURITY] [DLA 2284-1] ksh security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2019-14868",
"datePublished": "2020-04-02T16:48:57.000Z",
"dateReserved": "2019-08-10T00:00:00.000Z",
"dateUpdated": "2024-08-05T00:26:39.141Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-14868",
"date": "2026-05-24",
"epss": "0.00204",
"percentile": "0.42313"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ksh_project:ksh:20120801:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C453FD9C-7375-4E2E-84AD-ABC3CC786153\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.15.5\", \"matchCriteriaId\": \"99973242-A249-4C34-B042-5F833AE73708\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.\"}, {\"lang\": \"es\", \"value\": \"En ksh versi\\u00f3n 20120801, se detect\\u00f3 un fallo en la manera que eval\\u00faa determinadas variables de entorno. Un atacante podr\\u00eda usar este fallo para anular u omitir unas restricciones del entorno para ejecutar comandos de shell. Los servicios y las aplicaciones permiten a atacantes remotos no autenticados proporcionar una de esas variables de entorno que podr\\u00edan permitirles explotar este problema remotamente.\"}]",
"id": "CVE-2019-14868",
"lastModified": "2024-11-21T04:27:32.553",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.4, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.4, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2020-04-02T17:15:13.990",
"references": "[{\"url\": \"http://seclists.org/fulldisclosure/2020/May/53\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT211170\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2020/May/53\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT211170\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-77\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-77\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-14868\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2020-04-02T17:15:13.990\",\"lastModified\":\"2024-11-21T04:27:32.553\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.\"},{\"lang\":\"es\",\"value\":\"En ksh versi\u00f3n 20120801, se detect\u00f3 un fallo en la manera que eval\u00faa determinadas variables de entorno. Un atacante podr\u00eda usar este fallo para anular u omitir unas restricciones del entorno para ejecutar comandos de shell. Los servicios y las aplicaciones permiten a atacantes remotos no autenticados proporcionar una de esas variables de entorno que podr\u00edan permitirles explotar este problema remotamente.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.4,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-77\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-77\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ksh_project:ksh:20120801:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C453FD9C-7375-4E2E-84AD-ABC3CC786153\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.15.5\",\"matchCriteriaId\":\"99973242-A249-4C34-B042-5F833AE73708\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/fulldisclosure/2020/May/53\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT211170\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2020/May/53\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT211170\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2020-AVI-321
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | macOS | macOS Catalina versions antérieures à 10.15.5 | ||
| Apple | N/A | iCloud pour Windows versions 11.x antérieures à 11.2 | ||
| Apple | Safari | Safari versions antérieures à 13.1.1 | ||
| Apple | N/A | iCloud pour Windows versions antérieures à 7.19 | ||
| Apple | macOS | macOS Mojave sans le correctif de sécurité 2020-003 | ||
| Apple | macOS | macOS High Sierra sans le correctif de sécurité 2020-003 | ||
| Apple | N/A | Windows Migration Assistant versions antérieures à 2.2.0.0 (v. 1A11) |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 10.15.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud pour Windows versions 11.x ant\u00e9rieures \u00e0 11.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 13.1.1",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud pour Windows versions ant\u00e9rieures \u00e0 7.19",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave sans le correctif de s\u00e9curit\u00e9 2020-003",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS High Sierra sans le correctif de s\u00e9curit\u00e9 2020-003",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Windows Migration Assistant versions ant\u00e9rieures \u00e0 2.2.0.0 (v. 1A11)",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-9817",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9817"
},
{
"name": "CVE-2020-9788",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9788"
},
{
"name": "CVE-2019-20503",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20503"
},
{
"name": "CVE-2020-3878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-3878"
},
{
"name": "CVE-2020-9839",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9839"
},
{
"name": "CVE-2020-9856",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9856"
},
{
"name": "CVE-2020-9834",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9834"
},
{
"name": "CVE-2020-9855",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9855"
},
{
"name": "CVE-2020-9844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9844"
},
{
"name": "CVE-2020-9812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9812"
},
{
"name": "CVE-2020-9826",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9826"
},
{
"name": "CVE-2020-9816",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9816"
},
{
"name": "CVE-2020-9790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9790"
},
{
"name": "CVE-2020-9847",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9847"
},
{
"name": "CVE-2020-9789",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9789"
},
{
"name": "CVE-2020-9858",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9858"
},
{
"name": "CVE-2020-9825",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9825"
},
{
"name": "CVE-2020-9809",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9809"
},
{
"name": "CVE-2020-9857",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9857"
},
{
"name": "CVE-2020-9808",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9808"
},
{
"name": "CVE-2020-9831",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9831"
},
{
"name": "CVE-2020-9828",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9828"
},
{
"name": "CVE-2020-9801",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9801"
},
{
"name": "CVE-2020-9807",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9807"
},
{
"name": "CVE-2020-9852",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9852"
},
{
"name": "CVE-2020-9805",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9805"
},
{
"name": "CVE-2019-20044",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20044"
},
{
"name": "CVE-2020-9806",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9806"
},
{
"name": "CVE-2020-9815",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9815"
},
{
"name": "CVE-2020-9841",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9841"
},
{
"name": "CVE-2020-9797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9797"
},
{
"name": "CVE-2020-9793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9793"
},
{
"name": "CVE-2020-9832",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9832"
},
{
"name": "CVE-2020-9837",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9837"
},
{
"name": "CVE-2020-9791",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9791"
},
{
"name": "CVE-2020-9813",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9813"
},
{
"name": "CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"name": "CVE-2020-9803",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9803"
},
{
"name": "CVE-2020-9843",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9843"
},
{
"name": "CVE-2020-9821",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9821"
},
{
"name": "CVE-2020-9811",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9811"
},
{
"name": "CVE-2020-9802",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9802"
},
{
"name": "CVE-2020-3882",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-3882"
},
{
"name": "CVE-2020-9771",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9771"
},
{
"name": "CVE-2020-9814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9814"
},
{
"name": "CVE-2020-9830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9830"
},
{
"name": "CVE-2020-9827",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9827"
},
{
"name": "CVE-2020-9851",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9851"
},
{
"name": "CVE-2020-9842",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9842"
},
{
"name": "CVE-2020-9800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9800"
},
{
"name": "CVE-2020-9772",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9772"
},
{
"name": "CVE-2020-9792",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9792"
},
{
"name": "CVE-2020-9822",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9822"
},
{
"name": "CVE-2020-9833",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9833"
},
{
"name": "CVE-2020-9824",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9824"
},
{
"name": "CVE-2020-9794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9794"
},
{
"name": "CVE-2020-9795",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9795"
},
{
"name": "CVE-2020-9850",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9850"
},
{
"name": "CVE-2020-9804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9804"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-321",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-05-27T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211170 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211170"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211177 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211177"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211181 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211181"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211179 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211179"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211186 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211186"
}
]
}
CERTFR-2020-AVI-321
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | macOS | macOS Catalina versions antérieures à 10.15.5 | ||
| Apple | N/A | iCloud pour Windows versions 11.x antérieures à 11.2 | ||
| Apple | Safari | Safari versions antérieures à 13.1.1 | ||
| Apple | N/A | iCloud pour Windows versions antérieures à 7.19 | ||
| Apple | macOS | macOS Mojave sans le correctif de sécurité 2020-003 | ||
| Apple | macOS | macOS High Sierra sans le correctif de sécurité 2020-003 | ||
| Apple | N/A | Windows Migration Assistant versions antérieures à 2.2.0.0 (v. 1A11) |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 10.15.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud pour Windows versions 11.x ant\u00e9rieures \u00e0 11.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 13.1.1",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud pour Windows versions ant\u00e9rieures \u00e0 7.19",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave sans le correctif de s\u00e9curit\u00e9 2020-003",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS High Sierra sans le correctif de s\u00e9curit\u00e9 2020-003",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Windows Migration Assistant versions ant\u00e9rieures \u00e0 2.2.0.0 (v. 1A11)",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-9817",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9817"
},
{
"name": "CVE-2020-9788",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9788"
},
{
"name": "CVE-2019-20503",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20503"
},
{
"name": "CVE-2020-3878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-3878"
},
{
"name": "CVE-2020-9839",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9839"
},
{
"name": "CVE-2020-9856",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9856"
},
{
"name": "CVE-2020-9834",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9834"
},
{
"name": "CVE-2020-9855",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9855"
},
{
"name": "CVE-2020-9844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9844"
},
{
"name": "CVE-2020-9812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9812"
},
{
"name": "CVE-2020-9826",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9826"
},
{
"name": "CVE-2020-9816",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9816"
},
{
"name": "CVE-2020-9790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9790"
},
{
"name": "CVE-2020-9847",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9847"
},
{
"name": "CVE-2020-9789",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9789"
},
{
"name": "CVE-2020-9858",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9858"
},
{
"name": "CVE-2020-9825",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9825"
},
{
"name": "CVE-2020-9809",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9809"
},
{
"name": "CVE-2020-9857",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9857"
},
{
"name": "CVE-2020-9808",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9808"
},
{
"name": "CVE-2020-9831",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9831"
},
{
"name": "CVE-2020-9828",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9828"
},
{
"name": "CVE-2020-9801",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9801"
},
{
"name": "CVE-2020-9807",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9807"
},
{
"name": "CVE-2020-9852",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9852"
},
{
"name": "CVE-2020-9805",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9805"
},
{
"name": "CVE-2019-20044",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20044"
},
{
"name": "CVE-2020-9806",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9806"
},
{
"name": "CVE-2020-9815",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9815"
},
{
"name": "CVE-2020-9841",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9841"
},
{
"name": "CVE-2020-9797",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9797"
},
{
"name": "CVE-2020-9793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9793"
},
{
"name": "CVE-2020-9832",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9832"
},
{
"name": "CVE-2020-9837",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9837"
},
{
"name": "CVE-2020-9791",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9791"
},
{
"name": "CVE-2020-9813",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9813"
},
{
"name": "CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"name": "CVE-2020-9803",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9803"
},
{
"name": "CVE-2020-9843",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9843"
},
{
"name": "CVE-2020-9821",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9821"
},
{
"name": "CVE-2020-9811",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9811"
},
{
"name": "CVE-2020-9802",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9802"
},
{
"name": "CVE-2020-3882",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-3882"
},
{
"name": "CVE-2020-9771",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9771"
},
{
"name": "CVE-2020-9814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9814"
},
{
"name": "CVE-2020-9830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9830"
},
{
"name": "CVE-2020-9827",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9827"
},
{
"name": "CVE-2020-9851",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9851"
},
{
"name": "CVE-2020-9842",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9842"
},
{
"name": "CVE-2020-9800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9800"
},
{
"name": "CVE-2020-9772",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9772"
},
{
"name": "CVE-2020-9792",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9792"
},
{
"name": "CVE-2020-9822",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9822"
},
{
"name": "CVE-2020-9833",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9833"
},
{
"name": "CVE-2020-9824",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9824"
},
{
"name": "CVE-2020-9794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9794"
},
{
"name": "CVE-2020-9795",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9795"
},
{
"name": "CVE-2020-9850",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9850"
},
{
"name": "CVE-2020-9804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9804"
}
],
"links": [],
"reference": "CERTFR-2020-AVI-321",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2020-05-27T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211170 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211170"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211177 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211177"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211181 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211181"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211179 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211179"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT211186 du 26 mai 2020",
"url": "https://support.apple.com/en-us/HT211186"
}
]
}
FKIE_CVE-2019-14868
Vulnerability from fkie_nvd - Published: 2020-04-02 17:15 - Updated: 2024-11-21 04:27
Severity ?
7.4 (High) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ksh_project | ksh | 20120801 | |
| debian | debian_linux | 9.0 | |
| apple | mac_os_x | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ksh_project:ksh:20120801:*:*:*:*:*:*:*",
"matchCriteriaId": "C453FD9C-7375-4E2E-84AD-ABC3CC786153",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
"matchCriteriaId": "99973242-A249-4C34-B042-5F833AE73708",
"versionEndExcluding": "10.15.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely."
},
{
"lang": "es",
"value": "En ksh versi\u00f3n 20120801, se detect\u00f3 un fallo en la manera que eval\u00faa determinadas variables de entorno. Un atacante podr\u00eda usar este fallo para anular u omitir unas restricciones del entorno para ejecutar comandos de shell. Los servicios y las aplicaciones permiten a atacantes remotos no autenticados proporcionar una de esas variables de entorno que podr\u00edan permitirles explotar este problema remotamente."
}
],
"id": "CVE-2019-14868",
"lastModified": "2024-11-21T04:27:32.553",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.4,
"impactScore": 5.9,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-04-02T17:15:13.990",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT211170"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT211170"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-77"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-77"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
GHSA-2X84-7422-962R
Vulnerability from github – Published: 2022-05-24 17:13 – Updated: 2023-02-02 15:30
VLAI?
Details
In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
Severity ?
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2019-14868"
],
"database_specific": {
"cwe_ids": [
"CWE-77"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-04-02T17:15:00Z",
"severity": "HIGH"
},
"details": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"id": "GHSA-2x84-7422-962r",
"modified": "2023-02-02T15:30:28Z",
"published": "2022-05-24T17:13:14Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868"
},
{
"type": "WEB",
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:0431"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:0515"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:0559"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:0568"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:1332"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:1333"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:2210"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:5351"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2020:5352"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2019-14868"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
},
{
"type": "WEB",
"url": "https://support.apple.com/kb/HT211170"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2020/May/53"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2019-14868
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-14868",
"description": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"id": "GSD-2019-14868",
"references": [
"https://www.suse.com/security/cve/CVE-2019-14868.html",
"https://access.redhat.com/errata/RHSA-2020:5352",
"https://access.redhat.com/errata/RHSA-2020:5351",
"https://access.redhat.com/errata/RHSA-2020:2210",
"https://access.redhat.com/errata/RHSA-2020:1333",
"https://access.redhat.com/errata/RHSA-2020:1332",
"https://access.redhat.com/errata/RHSA-2020:0568",
"https://access.redhat.com/errata/RHSA-2020:0559",
"https://access.redhat.com/errata/RHSA-2020:0515",
"https://access.redhat.com/errata/RHSA-2020:0431",
"https://advisories.mageia.org/CVE-2019-14868.html",
"https://security.archlinux.org/CVE-2019-14868",
"https://linux.oracle.com/cve/CVE-2019-14868.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-14868"
],
"details": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"id": "GSD-2019-14868",
"modified": "2023-12-13T01:23:53.224994Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2019-14868",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "ksh",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20120801"
}
]
}
}
]
},
"vendor_name": "KornShell"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-77",
"lang": "eng",
"value": "CWE-77"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/kb/HT211170",
"refsource": "MISC",
"url": "https://support.apple.com/kb/HT211170"
},
{
"name": "http://seclists.org/fulldisclosure/2020/May/53",
"refsource": "MISC",
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"name": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2",
"refsource": "MISC",
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"name": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html",
"refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:ksh_project:ksh:20120801:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "10.15.5",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2019-14868"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868"
},
{
"name": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2"
},
{
"name": "https://support.apple.com/kb/HT211170",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT211170"
},
{
"name": "20200529 APPLE-SA-2020-05-26-3 macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra",
"refsource": "FULLDISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2020/May/53"
},
{
"name": "[debian-lts-announce] 20200720 [SECURITY] [DLA 2284-1] ksh security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-02-12T23:36Z",
"publishedDate": "2020-04-02T17:15Z"
}
}
}
OPENSUSE-SU-2024:14252-1
Vulnerability from csaf_opensuse - Published: 2024-08-09 00:00 - Updated: 2024-08-09 00:00Summary
ksh-93vu-10.1 on GA media
Severity
Moderate
Notes
Title of the patch: ksh-93vu-10.1 on GA media
Description of the patch: These are all security issues fixed in the ksh-93vu-10.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-14252
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ksh-93vu-10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-93vu-10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-93vu-10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-93vu-10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-devel-93vu-10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-devel-93vu-10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-devel-93vu-10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ksh-devel-93vu-10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ksh-93vu-10.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ksh-93vu-10.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14252",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14252-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14868 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14868/"
}
],
"title": "ksh-93vu-10.1 on GA media",
"tracking": {
"current_release_date": "2024-08-09T00:00:00Z",
"generator": {
"date": "2024-08-09T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14252-1",
"initial_release_date": "2024-08-09T00:00:00Z",
"revision_history": [
{
"date": "2024-08-09T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ksh-93vu-10.1.aarch64",
"product": {
"name": "ksh-93vu-10.1.aarch64",
"product_id": "ksh-93vu-10.1.aarch64"
}
},
{
"category": "product_version",
"name": "ksh-devel-93vu-10.1.aarch64",
"product": {
"name": "ksh-devel-93vu-10.1.aarch64",
"product_id": "ksh-devel-93vu-10.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-93vu-10.1.ppc64le",
"product": {
"name": "ksh-93vu-10.1.ppc64le",
"product_id": "ksh-93vu-10.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ksh-devel-93vu-10.1.ppc64le",
"product": {
"name": "ksh-devel-93vu-10.1.ppc64le",
"product_id": "ksh-devel-93vu-10.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-93vu-10.1.s390x",
"product": {
"name": "ksh-93vu-10.1.s390x",
"product_id": "ksh-93vu-10.1.s390x"
}
},
{
"category": "product_version",
"name": "ksh-devel-93vu-10.1.s390x",
"product": {
"name": "ksh-devel-93vu-10.1.s390x",
"product_id": "ksh-devel-93vu-10.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-93vu-10.1.x86_64",
"product": {
"name": "ksh-93vu-10.1.x86_64",
"product_id": "ksh-93vu-10.1.x86_64"
}
},
{
"category": "product_version",
"name": "ksh-devel-93vu-10.1.x86_64",
"product": {
"name": "ksh-devel-93vu-10.1.x86_64",
"product_id": "ksh-devel-93vu-10.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-93vu-10.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-93vu-10.1.aarch64"
},
"product_reference": "ksh-93vu-10.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-93vu-10.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-93vu-10.1.ppc64le"
},
"product_reference": "ksh-93vu-10.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-93vu-10.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-93vu-10.1.s390x"
},
"product_reference": "ksh-93vu-10.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-93vu-10.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-93vu-10.1.x86_64"
},
"product_reference": "ksh-93vu-10.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-devel-93vu-10.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-devel-93vu-10.1.aarch64"
},
"product_reference": "ksh-devel-93vu-10.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-devel-93vu-10.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-devel-93vu-10.1.ppc64le"
},
"product_reference": "ksh-devel-93vu-10.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-devel-93vu-10.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-devel-93vu-10.1.s390x"
},
"product_reference": "ksh-devel-93vu-10.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-devel-93vu-10.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ksh-devel-93vu-10.1.x86_64"
},
"product_reference": "ksh-devel-93vu-10.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-14868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14868"
}
],
"notes": [
{
"category": "general",
"text": "In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ksh-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-93vu-10.1.x86_64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14868",
"url": "https://www.suse.com/security/cve/CVE-2019-14868"
},
{
"category": "external",
"summary": "SUSE Bug 1160796 for CVE-2019-14868",
"url": "https://bugzilla.suse.com/1160796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ksh-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-93vu-10.1.x86_64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ksh-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-93vu-10.1.x86_64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.aarch64",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.ppc64le",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.s390x",
"openSUSE Tumbleweed:ksh-devel-93vu-10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-09T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-14868"
}
]
}
RHSA-2020:0431
Vulnerability from csaf_redhat - Published: 2020-02-05 12:15 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ksh security update
Severity
Important
Notes
Topic: An update for ksh is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KornShell (ksh) is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).
Security Fix(es):
* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
7.4 (High)
Affected products
Fixed
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ksh is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KornShell (ksh) is a Unix shell developed by AT\u0026T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).\n\nSecurity Fix(es):\n\n* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0431",
"url": "https://access.redhat.com/errata/RHSA-2020:0431"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0431.json"
}
],
"title": "Red Hat Security Advisory: ksh security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:09+00:00",
"generator": {
"date": "2025-11-21T18:12:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0431",
"initial_release_date": "2020-02-05T12:15:54+00:00",
"revision_history": [
{
"date": "2020-02-05T12:15:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-02-05T12:15:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.0::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_0.ppc64le",
"product": {
"name": "ksh-0:20120801-253.el8_0.ppc64le",
"product_id": "ksh-0:20120801-253.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"product_id": "ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"product_id": "ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_0.x86_64",
"product": {
"name": "ksh-0:20120801-253.el8_0.x86_64",
"product_id": "ksh-0:20120801-253.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_0.x86_64",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_0.x86_64",
"product_id": "ksh-debugsource-0:20120801-253.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"product_id": "ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_0.src",
"product": {
"name": "ksh-0:20120801-253.el8_0.src",
"product_id": "ksh-0:20120801-253.el8_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le"
},
"product_reference": "ksh-0:20120801-253.el8_0.ppc64le",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src"
},
"product_reference": "ksh-0:20120801-253.el8_0.src",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64"
},
"product_reference": "ksh-0:20120801-253.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.0)",
"product_id": "AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-14868",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"discovery_date": "2019-10-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757324"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14868"
},
{
"category": "external",
"summary": "RHBZ#1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868"
}
],
"release_date": "2019-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-05T12:15:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0431"
},
{
"category": "workaround",
"details": "No known mitigation available.",
"product_ids": [
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.src",
"AppStream-8.0.0.Z.E4S:ksh-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debuginfo-0:20120801-253.el8_0.x86_64",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.ppc64le",
"AppStream-8.0.0.Z.E4S:ksh-debugsource-0:20120801-253.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection"
}
]
}
RHSA-2020:0515
Vulnerability from csaf_redhat - Published: 2020-02-17 09:03 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ksh security update
Severity
Important
Notes
Topic: An update for ksh is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KornShell (ksh) is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).
Security Fix(es):
* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
7.4 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.10.z:ksh-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-0:20120801-38.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-0:20120801-38.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ksh is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KornShell (ksh) is a Unix shell developed by AT\u0026T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).\n\nSecurity Fix(es):\n\n* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0515",
"url": "https://access.redhat.com/errata/RHSA-2020:0515"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0515.json"
}
],
"title": "Red Hat Security Advisory: ksh security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:14+00:00",
"generator": {
"date": "2025-11-21T18:12:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0515",
"initial_release_date": "2020-02-17T09:03:47+00:00",
"revision_history": [
{
"date": "2020-02-17T09:03:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-02-17T09:03:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-38.el6_10.i686",
"product": {
"name": "ksh-0:20120801-38.el6_10.i686",
"product_id": "ksh-0:20120801-38.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-38.el6_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"product": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"product_id": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-38.el6_10?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-38.el6_10.x86_64",
"product": {
"name": "ksh-0:20120801-38.el6_10.x86_64",
"product_id": "ksh-0:20120801-38.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-38.el6_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"product": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"product_id": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-38.el6_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-38.el6_10.src",
"product": {
"name": "ksh-0:20120801-38.el6_10.src",
"product_id": "ksh-0:20120801-38.el6_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-38.el6_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-38.el6_10.s390x",
"product": {
"name": "ksh-0:20120801-38.el6_10.s390x",
"product_id": "ksh-0:20120801-38.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-38.el6_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"product": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"product_id": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-38.el6_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-38.el6_10.ppc64",
"product": {
"name": "ksh-0:20120801-38.el6_10.ppc64",
"product_id": "ksh-0:20120801-38.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-38.el6_10?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"product": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"product_id": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-38.el6_10?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-0:20120801-38.el6_10.src"
},
"product_reference": "ksh-0:20120801-38.el6_10.src",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Client-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src"
},
"product_reference": "ksh-0:20120801-38.el6_10.src",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-0:20120801-38.el6_10.src"
},
"product_reference": "ksh-0:20120801-38.el6_10.src",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src"
},
"product_reference": "ksh-0:20120801-38.el6_10.src",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.s390x",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-38.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-14868",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"discovery_date": "2019-10-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757324"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14868"
},
{
"category": "external",
"summary": "RHBZ#1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868"
}
],
"release_date": "2019-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-17T09:03:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0515"
},
{
"category": "workaround",
"details": "No known mitigation available.",
"product_ids": [
"6Client-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"6Client-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Client-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Client-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.src",
"6ComputeNode-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6ComputeNode-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Server-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Server-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.src",
"6Workstation-6.10.z:ksh-0:20120801-38.el6_10.x86_64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.i686",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.ppc64",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.s390x",
"6Workstation-6.10.z:ksh-debuginfo-0:20120801-38.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection"
}
]
}
RHSA-2020:0559
Vulnerability from csaf_redhat - Published: 2020-02-20 10:19 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ksh security update
Severity
Important
Notes
Topic: An update for ksh is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KornShell (ksh) is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).
Security Fix(es):
* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
7.4 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ksh is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KornShell (ksh) is a Unix shell developed by AT\u0026T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).\n\nSecurity Fix(es):\n\n* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0559",
"url": "https://access.redhat.com/errata/RHSA-2020:0559"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0559.json"
}
],
"title": "Red Hat Security Advisory: ksh security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:19+00:00",
"generator": {
"date": "2025-11-21T18:12:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0559",
"initial_release_date": "2020-02-20T10:19:48+00:00",
"revision_history": [
{
"date": "2020-02-20T10:19:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-02-20T10:19:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_1.ppc64le",
"product": {
"name": "ksh-0:20120801-253.el8_1.ppc64le",
"product_id": "ksh-0:20120801-253.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"product_id": "ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"product_id": "ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_1.s390x",
"product": {
"name": "ksh-0:20120801-253.el8_1.s390x",
"product_id": "ksh-0:20120801-253.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_1.s390x",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_1.s390x",
"product_id": "ksh-debugsource-0:20120801-253.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_1.s390x",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.s390x",
"product_id": "ksh-debuginfo-0:20120801-253.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_1.x86_64",
"product": {
"name": "ksh-0:20120801-253.el8_1.x86_64",
"product_id": "ksh-0:20120801-253.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_1.x86_64",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_1.x86_64",
"product_id": "ksh-debugsource-0:20120801-253.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"product_id": "ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_1.aarch64",
"product": {
"name": "ksh-0:20120801-253.el8_1.aarch64",
"product_id": "ksh-0:20120801-253.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ksh-debugsource-0:20120801-253.el8_1.aarch64",
"product": {
"name": "ksh-debugsource-0:20120801-253.el8_1.aarch64",
"product_id": "ksh-debugsource-0:20120801-253.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debugsource@20120801-253.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"product": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"product_id": "ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-253.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-253.el8_1.src",
"product": {
"name": "ksh-0:20120801-253.el8_1.src",
"product_id": "ksh-0:20120801-253.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-253.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64"
},
"product_reference": "ksh-0:20120801-253.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le"
},
"product_reference": "ksh-0:20120801-253.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x"
},
"product_reference": "ksh-0:20120801-253.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src"
},
"product_reference": "ksh-0:20120801-253.el8_1.src",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-253.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64"
},
"product_reference": "ksh-0:20120801-253.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-253.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debugsource-0:20120801-253.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64"
},
"product_reference": "ksh-debugsource-0:20120801-253.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-14868",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"discovery_date": "2019-10-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757324"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14868"
},
{
"category": "external",
"summary": "RHBZ#1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868"
}
],
"release_date": "2019-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-20T10:19:48+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0559"
},
{
"category": "workaround",
"details": "No known mitigation available.",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debuginfo-0:20120801-253.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ksh-debugsource-0:20120801-253.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection"
}
]
}
RHSA-2020:0568
Vulnerability from csaf_redhat - Published: 2020-02-24 09:05 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ksh security update
Severity
Important
Notes
Topic: An update for ksh is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: KornShell (ksh) is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).
Security Fix(es):
* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.
7.4 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-0:20120801-140.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-0:20120801-140.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ksh is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "KornShell (ksh) is a Unix shell developed by AT\u0026T Bell Laboratories, which is backward-compatible with the Bourne shell (sh) and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard (IEEE Std 1003.2-1992).\n\nSecurity Fix(es):\n\n* ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0568",
"url": "https://access.redhat.com/errata/RHSA-2020:0568"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0568.json"
}
],
"title": "Red Hat Security Advisory: ksh security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:21+00:00",
"generator": {
"date": "2025-11-21T18:12:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0568",
"initial_release_date": "2020-02-24T09:05:27+00:00",
"revision_history": [
{
"date": "2020-02-24T09:05:27+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-02-24T09:05:27+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-140.el7_7.x86_64",
"product": {
"name": "ksh-0:20120801-140.el7_7.x86_64",
"product_id": "ksh-0:20120801-140.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-140.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"product": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"product_id": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-140.el7_7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-140.el7_7.src",
"product": {
"name": "ksh-0:20120801-140.el7_7.src",
"product_id": "ksh-0:20120801-140.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-140.el7_7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-140.el7_7.s390x",
"product": {
"name": "ksh-0:20120801-140.el7_7.s390x",
"product_id": "ksh-0:20120801-140.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-140.el7_7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"product": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"product_id": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-140.el7_7?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-140.el7_7.ppc64",
"product": {
"name": "ksh-0:20120801-140.el7_7.ppc64",
"product_id": "ksh-0:20120801-140.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-140.el7_7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"product": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"product_id": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-140.el7_7?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ksh-0:20120801-140.el7_7.ppc64le",
"product": {
"name": "ksh-0:20120801-140.el7_7.ppc64le",
"product_id": "ksh-0:20120801-140.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh@20120801-140.el7_7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"product": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"product_id": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ksh-debuginfo@20120801-140.el7_7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-0:20120801-140.el7_7.src"
},
"product_reference": "ksh-0:20120801-140.el7_7.src",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Client-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src"
},
"product_reference": "ksh-0:20120801-140.el7_7.src",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-0:20120801-140.el7_7.src"
},
"product_reference": "ksh-0:20120801-140.el7_7.src",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src"
},
"product_reference": "ksh-0:20120801-140.el7_7.src",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.s390x",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ksh-debuginfo-0:20120801-140.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
},
"product_reference": "ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-14868",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"discovery_date": "2019-10-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757324"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-14868"
},
{
"category": "external",
"summary": "RHBZ#1757324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14868"
}
],
"release_date": "2019-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-02-24T09:05:27+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0568"
},
{
"category": "workaround",
"details": "No known mitigation available.",
"product_ids": [
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Client-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Client-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7ComputeNode-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7ComputeNode-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Server-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Server-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.src",
"7Workstation-7.7.Z:ksh-0:20120801-140.el7_7.x86_64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.ppc64le",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.s390x",
"7Workstation-7.7.Z:ksh-debuginfo-0:20120801-140.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…