csaf_suse - suse-su-2018:1072-1

suse-su-2018:1072-1

Vulnerability from csaf_suse

Published

2018-04-25 12:15

Modified

2018-04-25 12:15

Summary

Security update for zsh

Notes

Title of the patch

Security update for zsh

Description of the patch

This update for zsh fixes the following issues: - CVE-2014-10070: environment variable injection could lead to local privilege escalation (bnc#1082885) - CVE-2014-10071: buffer overflow in exec.c could lead to denial of service. (bnc#1082977) - CVE-2014-10072: buffer overflow In utils.c when scanning very long directory paths for symbolic links. (bnc#1082975) - CVE-2016-10714: In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters. (bnc#1083250) - CVE-2017-18205: In builtin.c when sh compatibility mode is used, a NULL pointer dereference could lead to denial of service (bnc#1082998) - CVE-2018-1071: exec.c:hashcmd() function vulnerability could lead to denial of service. (bnc#1084656) - CVE-2018-1083: Autocomplete vulnerability could lead to privilege escalation. (bnc#1087026) - CVE-2018-7549: In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p. (bnc#1082991) - CVE-2017-18206: buffer overrun in xsymlinks could lead to denial of service (bnc#1083002) - Autocomplete and REPORTTIME broken (bsc#896914)

Patchnames

SUSE-SLE-DESKTOP-12-SP3-2018-733,SUSE-SLE-SERVER-12-SP3-2018-733

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for zsh",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for zsh fixes the following issues:\n\n  - CVE-2014-10070: environment variable injection could lead to local privilege escalation (bnc#1082885)\n\n  - CVE-2014-10071: buffer overflow in exec.c could lead to denial of service. (bnc#1082977)\n\n  - CVE-2014-10072: buffer overflow In utils.c when scanning \nvery long directory paths for symbolic links. (bnc#1082975)\n\n  - CVE-2016-10714: In zsh before 5.3, an off-by-one error resulted in \nundersized buffers that were intended to support PATH_MAX characters. (bnc#1083250)\n\n  - CVE-2017-18205: In builtin.c when sh compatibility mode is used, a NULL pointer dereference \ncould lead to denial of service (bnc#1082998)\n\n  - CVE-2018-1071: exec.c:hashcmd() function vulnerability could lead to denial of service. (bnc#1084656)\n \n  - CVE-2018-1083: Autocomplete vulnerability could lead to privilege escalation. (bnc#1087026)\n\n  - CVE-2018-7549: In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, \nas demonstrated by typeset -p. (bnc#1082991)\n  \n  - CVE-2017-18206: buffer overrun in xsymlinks could lead to denial of service (bnc#1083002)\n    \n  - Autocomplete and REPORTTIME broken (bsc#896914)\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-DESKTOP-12-SP3-2018-733,SUSE-SLE-SERVER-12-SP3-2018-733",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1072-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:1072-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181072-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:1072-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-April/003957.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082885",
        "url": "https://bugzilla.suse.com/1082885"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082975",
        "url": "https://bugzilla.suse.com/1082975"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082977",
        "url": "https://bugzilla.suse.com/1082977"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082991",
        "url": "https://bugzilla.suse.com/1082991"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1082998",
        "url": "https://bugzilla.suse.com/1082998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1083002",
        "url": "https://bugzilla.suse.com/1083002"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1083250",
        "url": "https://bugzilla.suse.com/1083250"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084656",
        "url": "https://bugzilla.suse.com/1084656"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1087026",
        "url": "https://bugzilla.suse.com/1087026"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 896914",
        "url": "https://bugzilla.suse.com/896914"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-10070 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-10070/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-10071 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-10071/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-10072 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-10072/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-10714 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-10714/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18205 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18205/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18206 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18206/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1071 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1071/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1083 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1083/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-7549 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-7549/"
      }
    ],
    "title": "Security update for zsh",
    "tracking": {
      "current_release_date": "2018-04-25T12:15:43Z",
      "generator": {
        "date": "2018-04-25T12:15:43Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:1072-1",
      "initial_release_date": "2018-04-25T12:15:43Z",
      "revision_history": [
        {
          "date": "2018-04-25T12:15:43Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "zsh-5.0.5-6.7.2.aarch64",
                "product": {
                  "name": "zsh-5.0.5-6.7.2.aarch64",
                  "product_id": "zsh-5.0.5-6.7.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "zsh-5.0.5-6.7.2.ppc64le",
                "product": {
                  "name": "zsh-5.0.5-6.7.2.ppc64le",
                  "product_id": "zsh-5.0.5-6.7.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "zsh-5.0.5-6.7.2.s390x",
                "product": {
                  "name": "zsh-5.0.5-6.7.2.s390x",
                  "product_id": "zsh-5.0.5-6.7.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "zsh-5.0.5-6.7.2.x86_64",
                "product": {
                  "name": "zsh-5.0.5-6.7.2.x86_64",
                  "product_id": "zsh-5.0.5-6.7.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP3",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP3",
                  "product_id": "SUSE Linux Enterprise Server 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        },
        "product_reference": "zsh-5.0.5-6.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64"
        },
        "product_reference": "zsh-5.0.5-6.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le"
        },
        "product_reference": "zsh-5.0.5-6.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x"
        },
        "product_reference": "zsh-5.0.5-6.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        },
        "product_reference": "zsh-5.0.5-6.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64"
        },
        "product_reference": "zsh-5.0.5-6.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le"
        },
        "product_reference": "zsh-5.0.5-6.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x"
        },
        "product_reference": "zsh-5.0.5-6.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "zsh-5.0.5-6.7.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        },
        "product_reference": "zsh-5.0.5-6.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-10070",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-10070"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where zsh is being invoked in privilege-elevation contexts when the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where \"env_reset\" has been disabled.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-10070",
          "url": "https://www.suse.com/security/cve/CVE-2014-10070"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082885 for CVE-2014-10070",
          "url": "https://bugzilla.suse.com/1082885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2014-10070",
          "url": "https://bugzilla.suse.com/1200039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200209 for CVE-2014-10070",
          "url": "https://bugzilla.suse.com/1200209"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-10070"
    },
    {
      "cve": "CVE-2014-10071",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-10071"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the \"\u003e\u0026 fd\" syntax.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-10071",
          "url": "https://www.suse.com/security/cve/CVE-2014-10071"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082977 for CVE-2014-10071",
          "url": "https://bugzilla.suse.com/1082977"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2014-10071",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-10071"
    },
    {
      "cve": "CVE-2014-10072",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-10072"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-10072",
          "url": "https://www.suse.com/security/cve/CVE-2014-10072"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082975 for CVE-2014-10072",
          "url": "https://bugzilla.suse.com/1082975"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2014-10072",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-10072"
    },
    {
      "cve": "CVE-2016-10714",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-10714"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-10714",
          "url": "https://www.suse.com/security/cve/CVE-2016-10714"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1083250 for CVE-2016-10714",
          "url": "https://bugzilla.suse.com/1083250"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2016-10714",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "low"
        }
      ],
      "title": "CVE-2016-10714"
    },
    {
      "cve": "CVE-2017-18205",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18205"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18205",
          "url": "https://www.suse.com/security/cve/CVE-2017-18205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082998 for CVE-2017-18205",
          "url": "https://bugzilla.suse.com/1082998"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2017-18205",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-18205"
    },
    {
      "cve": "CVE-2017-18206",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18206"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In utils.c in zsh before 5.4, symlink expansion had a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18206",
          "url": "https://www.suse.com/security/cve/CVE-2017-18206"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1083002 for CVE-2017-18206",
          "url": "https://bugzilla.suse.com/1083002"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215218 for CVE-2017-18206",
          "url": "https://bugzilla.suse.com/1215218"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-18206"
    },
    {
      "cve": "CVE-2018-1071",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1071"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1071",
          "url": "https://www.suse.com/security/cve/CVE-2018-1071"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084656 for CVE-2018-1071",
          "url": "https://bugzilla.suse.com/1084656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2018-1071",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-1071"
    },
    {
      "cve": "CVE-2018-1083",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1083"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to use autocomplete to traverse the before mentioned path. If the user affected is privileged, this leads to privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1083",
          "url": "https://www.suse.com/security/cve/CVE-2018-1083"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087026 for CVE-2018-1083",
          "url": "https://bugzilla.suse.com/1087026"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189668 for CVE-2018-1083",
          "url": "https://bugzilla.suse.com/1189668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200209 for CVE-2018-1083",
          "url": "https://bugzilla.suse.com/1200209"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1083"
    },
    {
      "cve": "CVE-2018-7549",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-7549"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-7549",
          "url": "https://www.suse.com/security/cve/CVE-2018-7549"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1082991 for CVE-2018-7549",
          "url": "https://bugzilla.suse.com/1082991"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200039 for CVE-2018-7549",
          "url": "https://bugzilla.suse.com/1200039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:zsh-5.0.5-6.7.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:zsh-5.0.5-6.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-04-25T12:15:43Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-7549"
    }
  ]
}

CVE-2017-18205 (GCVE-0-2017-18205)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-05 21:13

Severity ?

CWE

Summary

In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set.

References

▼	URL	Tags
	https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58	x_refsource_MISC
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://security.gentoo.org/glsa/201805-10	vendor-advisory, x_refsource_GENTOO
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:13:49.111Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58"
          },
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "name": "GLSA-201805-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-10"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-31T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58"
        },
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "name": "GLSA-201805-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-10"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-18205",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In builtin.c in zsh before 5.4, when sh compatibility mode is used, there is a NULL pointer dereference during processing of the cd command with no argument if HOME is not set."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58"
            },
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "GLSA-201805-10",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201805-10"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-18205",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-05T21:13:49.111Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-1071 (GCVE-0-2018-1071)

Vulnerability from cvelistv5

Published

2018-03-09 15:00

Modified

2024-08-05 03:51

Severity ?

CWE

CWE-121

Summary

zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=1553531	x_refsource_CONFIRM
	https://usn.ubuntu.com/3608-1/	vendor-advisory, x_refsource_UBUNTU
	http://www.securityfocus.com/bid/103359	vdb-entry, x_refsource_BID
	https://security.gentoo.org/glsa/201805-10	vendor-advisory, x_refsource_GENTOO
	https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT
	https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	zsh	zsh	Version: 5.4.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:48.907Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553531"
          },
          {
            "name": "USN-3608-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3608-1/"
          },
          {
            "name": "103359",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/103359"
          },
          {
            "name": "GLSA-201805-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-10"
          },
          {
            "name": "[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          },
          {
            "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "zsh",
          "vendor": "zsh",
          "versions": [
            {
              "status": "affected",
              "version": "5.4.2"
            }
          ]
        }
      ],
      "datePublic": "2018-03-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "CWE-121",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-12-01T06:06:18",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553531"
        },
        {
          "name": "USN-3608-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3608-1/"
        },
        {
          "name": "103359",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/103359"
        },
        {
          "name": "GLSA-201805-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-10"
        },
        {
          "name": "[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        },
        {
          "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1071",
    "datePublished": "2018-03-09T15:00:00Z",
    "dateReserved": "2017-12-04T00:00:00",
    "dateUpdated": "2024-08-05T03:51:48.907Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2016-10714 (GCVE-0-2016-10714)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-06 03:30

Severity ?

CWE

Summary

In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.

References

▼	URL	Tags
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://sourceforge.net/p/zsh/code/ci/a62e1640bcafbb82d86ea8d8ce057a83c4683d60	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T03:30:20.143Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/a62e1640bcafbb82d86ea8d8ce057a83c4683d60"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-03-20T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/a62e1640bcafbb82d86ea8d8ce057a83c4683d60"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2016-10714",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/a62e1640bcafbb82d86ea8d8ce057a83c4683d60",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/a62e1640bcafbb82d86ea8d8ce057a83c4683d60"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2016-10714",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-06T03:30:20.143Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-1083 (GCVE-0-2018-1083)

Vulnerability from cvelistv5

Published

2018-03-28 13:00

Modified

2024-09-16 18:13

Severity ?

CWE

CWE-120 - ->CWE-121

Summary

Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to use autocomplete to traverse the before mentioned path. If the user affected is privileged, this leads to privilege escalation.

References

▼	URL	Tags
	https://usn.ubuntu.com/3608-1/	vendor-advisory, x_refsource_UBUNTU
	http://www.securityfocus.com/bid/103572	vdb-entry, x_refsource_BID
	https://security.gentoo.org/glsa/201805-10	vendor-advisory, x_refsource_GENTOO
	https://sourceforge.net/p/zsh/code/ci/259ac472eac291c8c103c7a0d8a4eaf3c2942ed7	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2018:1932	vendor-advisory, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=1557382	x_refsource_CONFIRM
	https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT
	https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	zsh	zsh	Version: before zsh 5.4.2-test-1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:48.910Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3608-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3608-1/"
          },
          {
            "name": "103572",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/103572"
          },
          {
            "name": "GLSA-201805-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-10"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/259ac472eac291c8c103c7a0d8a4eaf3c2942ed7"
          },
          {
            "name": "RHSA-2018:1932",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1932"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557382"
          },
          {
            "name": "[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          },
          {
            "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "zsh",
          "vendor": "zsh",
          "versions": [
            {
              "status": "affected",
              "version": "before zsh 5.4.2-test-1"
            }
          ]
        }
      ],
      "datePublic": "2018-03-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to use autocomplete to traverse the before mentioned path. If the user affected is privileged, this leads to privilege escalation."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-120",
              "description": "CWE-120-\u003eCWE-121",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-12-01T06:06:17",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "USN-3608-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3608-1/"
        },
        {
          "name": "103572",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/103572"
        },
        {
          "name": "GLSA-201805-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-10"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/259ac472eac291c8c103c7a0d8a4eaf3c2942ed7"
        },
        {
          "name": "RHSA-2018:1932",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1932"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557382"
        },
        {
          "name": "[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        },
        {
          "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "DATE_PUBLIC": "2018-03-26T00:00:00",
          "ID": "CVE-2018-1083",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "zsh",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "before zsh 5.4.2-test-1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "zsh"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to use autocomplete to traverse the before mentioned path. If the user affected is privileged, this leads to privilege escalation."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-120-\u003eCWE-121"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3608-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3608-1/"
            },
            {
              "name": "103572",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/103572"
            },
            {
              "name": "GLSA-201805-10",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201805-10"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/259ac472eac291c8c103c7a0d8a4eaf3c2942ed7",
              "refsource": "CONFIRM",
              "url": "https://sourceforge.net/p/zsh/code/ci/259ac472eac291c8c103c7a0d8a4eaf3c2942ed7"
            },
            {
              "name": "RHSA-2018:1932",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1932"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1557382",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557382"
            },
            {
              "name": "[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            },
            {
              "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1083",
    "datePublished": "2018-03-28T13:00:00Z",
    "dateReserved": "2017-12-04T00:00:00",
    "dateUpdated": "2024-09-16T18:13:29.080Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-7549 (GCVE-0-2018-7549)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-05 06:31

Severity ?

CWE

Summary

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p.

References

▼	URL	Tags
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://security.gentoo.org/glsa/201805-10	vendor-advisory, x_refsource_GENTOO
	https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd	x_refsource_MISC
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T06:31:04.386Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "name": "GLSA-201805-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-10"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-31T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "name": "GLSA-201805-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-10"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-7549",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "GLSA-201805-10",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201805-10"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-7549",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-05T06:31:04.386Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2017-18206 (GCVE-0-2017-18206)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-05 21:13

Severity ?

CWE

Summary

In utils.c in zsh before 5.4, symlink expansion had a buffer overflow.

References

▼	URL	Tags
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://security.gentoo.org/glsa/201805-10	vendor-advisory, x_refsource_GENTOO
	https://access.redhat.com/errata/RHSA-2018:1932	vendor-advisory, x_refsource_REDHAT
	https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d	x_refsource_MISC
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT
	https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:13:49.110Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "name": "GLSA-201805-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-10"
          },
          {
            "name": "RHSA-2018:1932",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1932"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          },
          {
            "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In utils.c in zsh before 5.4, symlink expansion had a buffer overflow."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-12-01T06:06:19",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "name": "GLSA-201805-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-10"
        },
        {
          "name": "RHSA-2018:1932",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1932"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        },
        {
          "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-18206",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In utils.c in zsh before 5.4, symlink expansion had a buffer overflow."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "GLSA-201805-10",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201805-10"
            },
            {
              "name": "RHSA-2018:1932",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1932"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            },
            {
              "name": "[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-18206",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-05T21:13:49.110Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2014-10070 (GCVE-0-2014-10070)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-06 14:02

Severity ?

CWE

Summary

zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where zsh is being invoked in privilege-elevation contexts when the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where "env_reset" has been disabled.

References

▼	URL	Tags
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72	x_refsource_MISC
	http://zsh.sourceforge.net/releases.html	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T14:02:38.191Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://zsh.sourceforge.net/releases.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where zsh is being invoked in privilege-elevation contexts when the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where \"env_reset\" has been disabled."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-03-20T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://zsh.sourceforge.net/releases.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-10070",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation, under some specific and atypical conditions where zsh is being invoked in privilege-elevation contexts when the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where \"env_reset\" has been disabled."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/546203a770cec329e73781c3c8ab1078390aee72"
            },
            {
              "name": "http://zsh.sourceforge.net/releases.html",
              "refsource": "MISC",
              "url": "http://zsh.sourceforge.net/releases.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2014-10070",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-06T14:02:38.191Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2014-10071 (GCVE-0-2014-10071)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-06 14:02

Severity ?

CWE

Summary

In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.

References

▼	URL	Tags
	https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055	x_refsource_MISC
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T14:02:38.246Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055"
          },
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the \"\u003e\u0026 fd\" syntax."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-31T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055"
        },
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-10071",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the \"\u003e\u0026 fd\" syntax."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/49a3086bb67575435251c70ee598e2fd406ef055"
            },
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2014-10071",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-06T14:02:38.246Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2014-10072 (GCVE-0-2014-10072)

Vulnerability from cvelistv5

Published

2018-02-27 22:00

Modified

2024-08-06 14:02

Severity ?

CWE

Summary

In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links.

References

▼	URL	Tags
	https://usn.ubuntu.com/3593-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:1932	vendor-advisory, x_refsource_REDHAT
	https://sourceforge.net/p/zsh/code/ci/3e06aeabd8a9e8384ebaa8b08996cd1f64737210	x_refsource_MISC
	https://access.redhat.com/errata/RHSA-2018:3073	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T14:02:38.219Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3593-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3593-1/"
          },
          {
            "name": "RHSA-2018:1932",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1932"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://sourceforge.net/p/zsh/code/ci/3e06aeabd8a9e8384ebaa8b08996cd1f64737210"
          },
          {
            "name": "RHSA-2018:3073",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3073"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-31T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "USN-3593-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3593-1/"
        },
        {
          "name": "RHSA-2018:1932",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1932"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://sourceforge.net/p/zsh/code/ci/3e06aeabd8a9e8384ebaa8b08996cd1f64737210"
        },
        {
          "name": "RHSA-2018:3073",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3073"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-10072",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3593-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3593-1/"
            },
            {
              "name": "RHSA-2018:1932",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1932"
            },
            {
              "name": "https://sourceforge.net/p/zsh/code/ci/3e06aeabd8a9e8384ebaa8b08996cd1f64737210",
              "refsource": "MISC",
              "url": "https://sourceforge.net/p/zsh/code/ci/3e06aeabd8a9e8384ebaa8b08996cd1f64737210"
            },
            {
              "name": "RHSA-2018:3073",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3073"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2014-10072",
    "datePublished": "2018-02-27T22:00:00",
    "dateReserved": "2018-02-27T00:00:00",
    "dateUpdated": "2024-08-06T14:02:38.219Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2018:1072-1

Vulnerability from csaf_suse

CVE-2017-18205 (GCVE-0-2017-18205)

Vulnerability from cvelistv5

CVE-2018-1071 (GCVE-0-2018-1071)

Vulnerability from cvelistv5

CVE-2016-10714 (GCVE-0-2016-10714)

Vulnerability from cvelistv5

CVE-2018-1083 (GCVE-0-2018-1083)

Vulnerability from cvelistv5

CVE-2018-7549 (GCVE-0-2018-7549)

Vulnerability from cvelistv5

CVE-2017-18206 (GCVE-0-2017-18206)

Vulnerability from cvelistv5

CVE-2014-10070 (GCVE-0-2014-10070)

Vulnerability from cvelistv5

CVE-2014-10071 (GCVE-0-2014-10071)

Vulnerability from cvelistv5

CVE-2014-10072 (GCVE-0-2014-10072)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature