CVE-2018-1071

Source
Severity Low
Remote No
Type Denial of service
Description
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-652 zsh 5.4.2-1 5.5-1 Low Fixed
References
https://bugzilla.redhat.com/show_bug.cgi?id=1553531
Notes
fail to reproduce upstream.