Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1549862 - (CVE-2017-18205) CVE-2017-18205 zsh: NULL dereference in cd in sh compatibility mode under given circumstances
CVE-2017-18205 zsh: NULL dereference in cd in sh compatibility mode under giv...
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
impact=low,public=20170613,reported=2...
: Security
Depends On: 1570881 1570882
Blocks: 1549839
  Show dependency treegraph
 
Reported: 2018-02-27 17:36 EST by Laura Pardo
Modified: 2018-10-30 03:30 EDT (History)
5 users (show)

See Also:
Fixed In Version: zsh 5.4
Doc Type: If docs needed, set a value
Doc Text:
A NULL pointer dereference flaw was found in the code responsible for the cd builtin command of the zsh package. An attacker could use this flaw to cause a denial of service by crashing the user shell.
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2018:3073 None None None 2018-10-30 03:30 EDT

  None (edit)
Description Laura Pardo 2018-02-27 17:36:40 EST 
A flaw was found in zsh prior 5.3.1. There is a vulnerability when in sh compatibility mode if HOME was not set
and cd was used with no argument.


References:
https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58
Comment 1 Kamil Dudka 2018-03-06 09:08:24 EST 
(In reply to Laura Pardo from comment #0)
> A flaw was found in zsh prior 5.3.1.

The commit you refer to landed (217 commits) _after_ the 5.3.1 release.
Comment 2 Kamil Dudka 2018-03-06 10:47:00 EST 
fixed in zsh-5.3.1-7.fc26
Comment 5 errata-xmlrpc 2018-10-30 03:30:18 EDT 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2018:3073 https://access.redhat.com/errata/RHSA-2018:3073
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.