Oval Definition:oval:org.opensuse.security:def:94479
Revision Date:2022-03-04Version:1
Title: (Important)
Description:

This update for zsh fixes the following issues:

- CVE-2021-45444: Fixed a vulnerability where arbitrary shell commands could be executed related to prompt expansion (bsc#1196435). - CVE-2019-20044: Fixed a vulnerability where shell privileges would not be properly dropped when unsetting the PRIVILEGED option (bsc#1163882).
Family:unixClass:patch
Status:Reference(s):1163882
1183942
1196435
CVE-2019-20044
CVE-2021-23981
CVE-2021-23982
CVE-2021-23984
CVE-2021-23987
CVE-2021-45444
SUSE-SU-2021:1007-1
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • mozilla-nspr-4.25.1-3.17.1 is installed
  • OR mozilla-nspr-32bit-4.25.1-3.17.1 is installed
  • OR mozilla-nspr-devel-4.25.1-3.17.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed
  • AND zsh-5.6-7.5.1 is installed
    • BACK