Slackware Local Security Checks : Slackware: Security Advisory (SSA:2019-013-01)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.13.2019.013.01

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2019-013-01)

Resumen: The remote host is missing an update for the 'zsh' package(s) announced via the SSA:2019-013-01 advisory.

Descripción: Summary:
The remote host is missing an update for the 'zsh' package(s) announced via the SSA:2019-013-01 advisory.

Vulnerability Insight:
New zsh packages are available for Slackware 14.0, 14.1, and 14.2 to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/zsh-5.6.2-i586-1_slack14.2.txz: Upgraded.
This release fixes security issues, including ones that could allow a local
attacker to execute arbitrary code.
For more information, see:
[links moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'zsh' package(s) on Slackware 14.0, Slackware 14.1, Slackware 14.2.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-18205
https://security.gentoo.org/glsa/201805-10
https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58
RedHat Security Advisories: RHSA-2018:3073
https://access.redhat.com/errata/RHSA-2018:3073
https://usn.ubuntu.com/3593-1/
Common Vulnerability Exposure (CVE) ID: CVE-2017-18206
https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d
https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html
RedHat Security Advisories: RHSA-2018:1932
https://access.redhat.com/errata/RHSA-2018:1932
Common Vulnerability Exposure (CVE) ID: CVE-2018-1071
103359
http://www.securityfocus.com/bid/103359
GLSA-201805-10
RHSA-2018:3073
USN-3608-1
https://usn.ubuntu.com/3608-1/
[debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update
https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html
[debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update
https://bugzilla.redhat.com/show_bug.cgi?id=1553531
Common Vulnerability Exposure (CVE) ID: CVE-2018-1083
BugTraq ID: 103572
http://www.securityfocus.com/bid/103572
Common Vulnerability Exposure (CVE) ID: CVE-2018-1100
RHSA-2018:1932
USN-3764-1
https://usn.ubuntu.com/3764-1/
https://bugzilla.redhat.com/show_bug.cgi?id=1563395
https://sourceforge.net/p/zsh/code/ci/31f72205630687c1cef89347863aab355296a27f/
Common Vulnerability Exposure (CVE) ID: CVE-2018-7548
https://sourceforge.net/p/zsh/code/ci/110b13e1090bc31ac1352b28adc2d02b6d25a102
Common Vulnerability Exposure (CVE) ID: CVE-2018-7549
https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2019.013.01
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2019-013-01)
Resumen:	The remote host is missing an update for the 'zsh' package(s) announced via the SSA:2019-013-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'zsh' package(s) announced via the SSA:2019-013-01 advisory. Vulnerability Insight: New zsh packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/zsh-5.6.2-i586-1_slack14.2.txz: Upgraded. This release fixes security issues, including ones that could allow a local attacker to execute arbitrary code. For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'zsh' package(s) on Slackware 14.0, Slackware 14.1, Slackware 14.2. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-18205 https://security.gentoo.org/glsa/201805-10 https://sourceforge.net/p/zsh/code/ci/eb783754bdb74377f3cea4ceca9c23a02ea1bf58 RedHat Security Advisories: RHSA-2018:3073 https://access.redhat.com/errata/RHSA-2018:3073 https://usn.ubuntu.com/3593-1/ Common Vulnerability Exposure (CVE) ID: CVE-2017-18206 https://sourceforge.net/p/zsh/code/ci/c7a9cf465dd620ef48d586026944d9bd7a0d5d6d https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html RedHat Security Advisories: RHSA-2018:1932 https://access.redhat.com/errata/RHSA-2018:1932 Common Vulnerability Exposure (CVE) ID: CVE-2018-1071 103359 http://www.securityfocus.com/bid/103359 GLSA-201805-10 RHSA-2018:3073 USN-3608-1 https://usn.ubuntu.com/3608-1/ [debian-lts-announce] 20180331 [SECURITY] [DLA 1335-1] zsh security update https://lists.debian.org/debian-lts-announce/2018/03/msg00038.html [debian-lts-announce] 20201201 [SECURITY] [DLA 2470-1] zsh security update https://bugzilla.redhat.com/show_bug.cgi?id=1553531 Common Vulnerability Exposure (CVE) ID: CVE-2018-1083 BugTraq ID: 103572 http://www.securityfocus.com/bid/103572 Common Vulnerability Exposure (CVE) ID: CVE-2018-1100 RHSA-2018:1932 USN-3764-1 https://usn.ubuntu.com/3764-1/ https://bugzilla.redhat.com/show_bug.cgi?id=1563395 https://sourceforge.net/p/zsh/code/ci/31f72205630687c1cef89347863aab355296a27f/ Common Vulnerability Exposure (CVE) ID: CVE-2018-7548 https://sourceforge.net/p/zsh/code/ci/110b13e1090bc31ac1352b28adc2d02b6d25a102 Common Vulnerability Exposure (CVE) ID: CVE-2018-7549 https://sourceforge.net/p/zsh/code/ci/c2cc8b0fbefc9868fa83537f5b6d90fc1ec438dd
Copyright	Copyright (C) 2022 Greenbone AG