Package zsh
Status Unknown
Severity Medium
Type denial of service
Affected 5.4.2-1
Fixed Unknown
Current 5.4.2-2 [extra]
Ticket None
Created Tue Mar 13 19:51:20 2018
Issue Severity Remote Type Description
CVE-2018-1071 Medium No Denial of service
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a...