AVG-652

Package zsh
Status Fixed
Severity Low
Type denial of service
Affected 5.4.2-1
Fixed 5.5-1
Current 5.5.1-2 [extra]
Ticket None
Created Tue Mar 13 19:51:20 2018
Issue Severity Remote Type Description
CVE-2018-1071 Low No Denial of service
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a...