You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa zsh

Sigurnosni nedostatak programskog paketa zsh

  • Detalji os-a: WN7
  • Važnost: INF
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2018-03-13 23:10:46.414207

Name : zsh
Product : Fedora 27
Version : 5.4.1
Release : 2.fc27
Summary : Powerful interactive shell
Description :
The zsh shell is a command interpreter usable as an interactive login
shell and as a shell script command processor. Zsh resembles the ksh
shell (the Korn shell), but includes many enhancements. Zsh supports
command line editing, built-in spelling correction, programmable
command completion, shell functions (with autoloading), a history
mechanism, and more.

Update Information:

– avoid crash when copying empty hash table (CVE-2018-7549) – avoid NULL
dereference when using “`${(PA)…}“` on an empty array (CVE-2018-7548)

[ 1 ] Bug #1549842 – CVE-2018-7548 zsh: null-pointer deref when using ${(PA)…} on an empty array result [fedora-all]

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade zsh’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorVlatka Misic
Cert idNCERT-REF-2018-03-0001-ADV