Oval Definition:oval:org.opensuse.security:def:93324
Revision Date:2022-03-04Version:1
Title: (Important)
Description:

This update for zsh fixes the following issues:

- CVE-2021-45444: Fixed a vulnerability where arbitrary shell commands could be executed related to prompt expansion (bsc#1196435). - CVE-2019-20044: Fixed a vulnerability where shell privileges would not be properly dropped when unsetting the PRIVILEGED option (bsc#1163882).
Family:unixClass:patch
Status:Reference(s):1163882
1182279
1182408
1182411
1182412
1182413
1182415
1182416
1182417
1182418
1182419
1182420
1196435
CVE-2019-20044
CVE-2020-36221
CVE-2020-36222
CVE-2020-36223
CVE-2020-36224
CVE-2020-36225
CVE-2020-36226
CVE-2020-36227
CVE-2020-36228
CVE-2020-36229
CVE-2020-36230
CVE-2021-27212
CVE-2021-45444
SUSE-SU-2021:0723-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Manager Server 4.0 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.48.1 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.48.1 is installed
  • OR libldap-data-2.4.46-9.48.1 is installed
  • OR openldap2-2.4.46-9.48.1 is installed
  • OR openldap2-back-meta-2.4.46-9.48.1 is installed
  • OR openldap2-back-perl-2.4.46-9.48.1 is installed
  • OR openldap2-client-2.4.46-9.48.1 is installed
  • OR openldap2-devel-2.4.46-9.48.1 is installed
  • OR openldap2-devel-32bit-2.4.46-9.48.1 is installed
  • OR openldap2-devel-static-2.4.46-9.48.1 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.48.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure is installed
  • AND zsh-5.6-7.5.1 is installed
    • BACK