AVG-764

Package zsh
Status Fixed
Severity Low
Type insufficient validation
Affected 5.5.1-2
Fixed 5.6-1
Current 5.6.2-1 [extra]
Ticket None
Created Wed Sep 5 15:39:35 2018
Issue Severity Remote Type Description
CVE-2018-13259 Low No Insufficient validation
An issue was discovered in zsh before 5.6. Shebang lines exceeding 64 characters were truncated, potentially leading to an execve call to a program name...
CVE-2018-0502 Low No Insufficient validation
An issue was discovered in zsh before 5.6. The beginning of a #! script file was mishandled, potentially leading to an execve call to a program named on the...
Date Advisory Package Description
24 Sep 2018 ASA-201809-3 zsh insufficient validation
References
https://www.zsh.org/mla/zsh-announce/136